Data collection and Telecommunications - Cyber Security Informer

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA).

Telecommunications

Telecommunications Authentication Data collection Passwords

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Krebs on Security

MARCH 20, 2023

A new breach involving data from nine million AT&T customers is a fresh reminder that your mobile provider likely collects and shares a great deal of information about where you go and what you do with your mobile device — unless and until you affirmatively opt out of this data collection.

Mobile

Mobile Wireless Advertising Telecommunications

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

Security Affairs

DECEMBER 30, 2020

Customer proprietary network information (CPNI) is the data collected by telecommunications companies about a consumer’s telephone calls. The telecommunication giant is in the process of notifying impacted customers.

Data breaches

Data breaches Mobile Telecommunications Wireless

On Executive Order 12333

Schneier on Security

SEPTEMBER 28, 2020

The Article pays particular attention to EO 12333’s designation of the National Security Agency as primarily responsible for conducting signals intelligence, which includes the installation of malware, the analysis of internet traffic traversing the telecommunications backbone, the hacking of U.S.-based

Surveillance

Surveillance Telecommunications Internet Internet

5G Security

Schneier on Security

JANUARY 14, 2020

intelligence agencies like the NSA rely on inadvertent insecurities for their worldwide data collection efforts, and law enforcement agencies like the FBI have even tried to introduce new ones to make their own data collection efforts easier. What's more, U.S.

Data collection

Data collection Software Marketing Government

Russian spies are attempting to tap transatlantic undersea cables

Security Affairs

MARCH 1, 2020

Data provided in the reports are disconcerting, British telecommunications firms supported GCHQ in collecting a large volume of internet data from undersea cables, the overall amount of information from 2007 to 2012 registered a 7,000-fold increase, meanwhile, the spying system monitored nearly 46 billion private communications “events” every day.

Wireless

Wireless Surveillance Telecommunications Advertising

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

While it's unlikely that China would bother spying on commuters using subway cars, it would be much less surprising if a tech company offered free Internet on subways in exchange for surveillance and data collection. We might willingly pay the higher prices because we want domestic control of our telecommunications infrastructure.

Surveillance

Surveillance Wireless Government Internet

Data Loss Prevention for Small and Medium-Sized Businesses

IT Security Guru

JULY 28, 2023

Privacy Policies and Consent Management : Developing and implementing clear privacy policies, including obtaining explicit consent for data collection and processing, establishes transparency and builds customer trust. The post Data Loss Prevention for Small and Medium-Sized Businesses appeared first on IT Security Guru.

Data breaches

Data breaches Risk Education Telecommunications

Quad9 to move offices to Switzerland, invites other privacy-focused firms to follow

SC Magazine

FEBRUARY 17, 2021

The company received a finding of law from the Swiss government that it will not be treated as a telecommunications provider, exempting it from laws that would mandate data collection. Other alternatives in the same space include Cloudflare’s 1.1.1.1 and Google Public DNS. are wary of U.S.

DNS

DNS Telecommunications Surveillance Data collection

Data Privacy in the United States: A Recap of 2023 Developments

Centraleyes

FEBRUARY 1, 2024

Connecticut – S 1058: Attorney Generals Recommendations Enacted to enhance consumer protection, Connecticut’s S 1058 intersects with charitable organizations, telecommunications, and the attorney general’s recommendations. The legislation imposes a civil penalty, emphasizing accountability and responsible data practices.

Data privacy

Data privacy Consumer Protection Media Data collection

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

Krebs on Security

MAY 2, 2023

This page indicates that access to the consumer and payment data collected by US Job Services is currently granted to several other coders who work with Mr. Mirza in Pakistan, and to multiple executives, contractors and employees working for a call center in Murfreesboro, Tennessee.

Marketing

Marketing Advertising Scams Telecommunications

TOP 10 unattributed APT mysteries

SecureList

OCTOBER 7, 2022

It proved to be a part of a complex APT platform targeting government, telecommunication, scientific, military, and financial organizations in Russia, Iran, Rwanda, and possibly, Italian-speaking countries. There are reasons to believe that unknown Linux implants exist that can send data collected from Linux machines to Mafalda.

Malware

Malware Computers and Electronics Telecommunications Encryption

Mastering the German Federal Data Protection Act (BDSG-New): A Deep Dive

Centraleyes

DECEMBER 4, 2023

In Germany, the framework for data protection supervision adheres to a federal model. The highest authority in this structure is the Federal Commissioner for Data Protection, entrusted with the oversight of federal authorities and telecommunications entities—a central figure in the data protection landscape.

Data privacy

Data privacy Risk Telecommunications Big data

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

SecureList

JUNE 20, 2022

within network activity logs collected by the Internet Service Provider (ISP), etc.). Below are some examples of the type of data collected and strategies of collection and analysis during the technical attribution process. How the pie gets made: steps in conducting technical attribution.

Energy and Utilities

Energy and Utilities Data collection Malware Cybersecurity

Best Network Monitoring Tools for 2022

eSecurity Planet

JANUARY 26, 2022

For larger organizations, the PRTG Enterprise Monitor can monitor thousands of devices for a distributed environment offering auditable data collection and service-based SLA monitoring through the ITOps Board. Read more : Best Identity and Access Management (IAM) Solutions for 2022. VIAVI Solutions.

Marketing

Marketing DDOS Threat Detection DNS

Top 18 Cybersecurity Startups to Watch in 2021

eSecurity Planet

JANUARY 28, 2021

Morgan Asset Management, Andreessen Horowitz, General Catalyst, Formation 8, BlackRock Funds, Accel Partners, and Data Collective, as well as individual investors such as Microsoft Chairman John W. These include CarrierEdge for telecommunications service providers, MicroEdge for the IoT industry and CloudEdge for enterprises.

Cybersecurity

Cybersecurity Artificial Intelligence Threat Detection Marketing

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

It determined that the injection point was situated within the connection between two Egyptian telecommunication providers. By relying solely on technical data, the lab could not ascertain which connection side the middlebox was positioned on.

Hacking

Hacking Energy and Utilities Media Malware

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Though Paladin has a smaller portfolio relative to other top contenders with 75 companies, the company has a substantial stack of strategic investments in technology, telecommunications, and more. In 2008, the Washington, DC-based firm made a prudent decision by shifting its focus to cybersecurity. Also read : Top Cyber Insurance Companies.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Cyber Security Informer

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Trending Sources

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

On Executive Order 12333

5G Security

Russian spies are attempting to tap transatlantic undersea cables

On Chinese "Spy Trains"

Data Loss Prevention for Small and Medium-Sized Businesses

Quad9 to move offices to Switzerland, invites other privacy-focused firms to follow

Data Privacy in the United States: A Recap of 2023 Developments

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

TOP 10 unattributed APT mysteries

Mastering the German Federal Data Protection Act (BDSG-New): A Deep Dive

Happy 13th Birthday, KrebsOnSecurity!

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

Best Network Monitoring Tools for 2022

Top 18 Cybersecurity Startups to Watch in 2021

Advanced threat predictions for 2024

Top VC Firms in Cybersecurity of 2022

Stay Connected