Hacking, Internet and Mobile - Cyber Security Informer

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. Experts believe that threat actors are aimed at gathering intelligence.

Mobile

Mobile Telecommunications Data breaches Hacking

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

T-Mobile reported recent infiltration attempts but pointed out that threat actors had no access to its systems and no sensitive data was compromised. T-Mobile detected recent infiltration attempts but confirmed no unauthorized system access occurred, and no sensitive data was compromised. This is not the case at T-Mobile.”

Mobile

Mobile Telecommunications Government Internet

T-Mobile Investigating Claims of Massive Data Breach

Krebs on Security

AUGUST 16, 2021

On Sunday, Vice.com broke the news that someone was selling data on 100 million people, and that the data came from T-Mobile. On Sunday, Vice.com broke the news that someone was selling data on 100 million people, and that the data came from T-Mobile. A sales thread tied to the allegedly stolen T-Mobile customer data.

Mobile

Mobile Data breaches Accountability Wireless

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. The Consumer Financial Protection Bureau (CFPB) is a U.S. Wall Street Journal reported.

Hacking

Hacking Internet Internet Government

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

Intrinsec said its analysis showed Prospero frequently hosts malware operations such as SocGholish and GootLoader , which are spread primarily via fake browser updates on hacked websites and often lay the groundwork for more serious cyber intrusions — including ransomware. A fake browser update page pushing mobile malware.

Malware

Malware Antivirus Software DDOS

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

Krebs on Security

OCTOBER 17, 2024

Prosecutors say Anonymous Sudan offered a “Limited Internet Shutdown Package,” which would enable customers to shut down internet service providers in specified countries for $500 (USD) an hour. ” However, the DDoS machine the Omer brothers allegedly built was not made up of hacked devices — as is typical with DDoS botnets.

DDOS

DDOS Government Internet Internet

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

According to the market share website statista.com , booking.com is by far the Internet’s busiest travel service, with nearly 550 million visits in September. Booking.com said it now requires 2FA , which forces partners to provide a one-time passcode from a mobile authentication app (Pulse) in addition to a username and password.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

Twitter Hacking for Profit and the LoLs

Krebs on Security

JULY 22, 2020

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. ” Twice in the past year, the OGUsers forum was hacked , and both times its database of usernames, email addresses and private messages was leaked online.

Hacking

Hacking Accountability Scams Media

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. that provides voice, video, data, and Internet telecommunications to consumers in France. million mobile and fixed subscribers. million mobile and fixed subscribers. Free S.A.S.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

The Last Watchdog

APRIL 7, 2020

Zoosk’s core service is delivered via a mobile app that has 20 different registration and/or login pages – all are API driven. Thus, it was well worth it for a hacking group to study Zoosk’s IT stack to reconnoiter its weak points. They can take the next step and execute a hack, which can include harvesting account credentials.

Mobile

Mobile Digital transformation Scams Accountability

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

At the start of this week, word got out that hackers claimed to have seized personal data for as many as 100 million T-Mobile patrons. Related: Kaseya hack worsens supply chain risk. According to the attackers, this was a configuration issue on an access point T-Mobile used for testing. This was not a sophisticated attack.

Mobile

Mobile Data breaches Authentication Accountability

RSAC Fireside Chat: Deploying Hollywood-tested content protection to improve mobile app security

The Last Watchdog

MAY 18, 2023

Your go-to mobile apps aren’t nearly has hackproof as you might like to believe. Related: Fallout of T-Mobile hack Hackers of modest skill routinely bypass legacy security measures, even two-factor authentication, with techniques such as overlay attacks. And hard data shows instances of such breaches on the rise.

Mobile

Mobile Authentication Internet Internet

SK Telecom revealed that malware breach began in 2022

Security Affairs

MAY 20, 2025

South Korean mobile network operator SK Telecom revealed that the security breach disclosed in April began in 2022. SK Telecom is South Koreas largest wireless telecom company, a major player in the countrys mobile and tech landscape. The telecom giant detected an infection of its systems at 11 PM on Saturday, April 19, 2025.

Malware

Malware Mobile Data breaches Wireless

Happy 15th Anniversary, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2024

Easily the longest story this year was an investigation into Stark Industries Solutions , a large, mysterious new Internet hosting firm that materialized when Russia invaded Ukraine. Fittingly, Radaris now pimps OneRep as a service when consumers request that their personal information be removed from the data broker’s website.

Scams

Scams Cybercrime Cryptocurrency Social Engineering

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

USDoD told KrebsOnSecurity their phony application was submitted in November in the CEO’s name, and that the application included a contact email address that they controlled — but also the CEO’s real mobile phone number. “I wasn’t expected to be approve[d].” This is a developing story.

Hacking

Hacking Cybercrime Energy and Utilities Accountability

How to Lose a Fortune with Just One Bad Click

Krebs on Security

DECEMBER 18, 2024

A scammer called using a real Google phone number to warn his Gmail account was being hacked, sent email security alerts directly from google.com, and ultimately seized control over the account by convincing him to click “yes” to a Google prompt on his mobile device.

Cryptocurrency

Cryptocurrency Accountability Authentication Phishing

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

The Last Watchdog

MAY 23, 2023

As digital transformation accelerates, Application Programming Interfaces (APIs) have become integral to software development – especially when it comes to adding cool new functionalities to our go-to mobile apps. Approov recently did a deep dive study of 650 financial services mobile apps of financial institutions across Europe and the US.

Mobile

Mobile Digital transformation Financial Services Software

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Krebs on Security

SEPTEMBER 4, 2018

Less than a week ago, security researcher Nitish Shah directed KrebsOnSecurity to an open database on the Web that allowed anyone to query up-to-the-minute mSpy records for both customer transactions at mSpy’s site and for mobile phone data collected by mSpy’s software. The database required no authentication.

Spyware

Spyware Mobile Advertising Software

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

Media coverage understandably focused on GoDaddy’s admission that it suffered three different cyberattacks over as many years at the hands of the same hacking group. Thus, the second factor cannot be phished, either over the phone or Internet.

Hacking

Hacking Social Engineering Phishing Scams

BadBox rapidly grows, 190,000 Android devices infected

Security Affairs

DECEMBER 21, 2024

The bot conducts ad fraud by accessing websites in the background and operates as a residential proxy, sharing the users internet connection for criminal activities, which can link the users IP address illegal activities. BadBox can also download additional payloads, amplifying the risks for the users.

Firmware

Firmware Malware Internet Internet

T Mobile Retailer hacks into Company Servers

CyberSecurity Insiders

DECEMBER 18, 2022

Argishti Khudaverdyan, a former retailer of T-Mobile company, received a 10-year jail imprisonment sentence at the end of last as he was found guilty of hacking into the servers of the telecom provider and gaining access to phone unlocking and unblocking of cellphones.

Retail

Retail Mobile Hacking Internet

South African telecom provider Cell C disclosed a data breach following a cyberattack

Security Affairs

APRIL 13, 2025

Cell C is the fourth-largest mobile network operator in South Africa, , after Vodacom, MTN, and Telkom. The company founded in 2001 offers prepaid and postpaid mobile plans, data bundles and internet services, fiber broadband, roaming and international calling, SIM-only plans and device deals.

Data breaches

Data breaches Unstructured Data Identity Theft Healthcare

STEPS FORWARD: How the Middle East led the U.S. to adopt smarter mobile security rules

The Last Watchdog

APRIL 13, 2020

When it comes to securing mobile computing devices, the big challenge businesses have long grappled with is how to protect company assets while at the same time respecting an individual’s privacy. Reacting to the BYOD craze , mobile security frameworks have veered from one partially effective approach to the next over the past decade.

Mobile

Mobile Computers and Electronics Encryption Data privacy

Bomb Threat Hoaxer Exposed by Hacked Gaming Site

Krebs on Security

FEBRUARY 13, 2019

In an ironic twist, the accused — who had fairly well separated his real life identity from his online personas — appears to have been caught after a gaming Web site he frequented got hacked. 12, the U.S. Justice Department announced the arrest of Timothy Dalton Vaughn , a 20-year-old from Winston-Salem, N.C.

Hacking

Hacking DDOS Government Accountability

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

Security Affairs

MAY 26, 2025

CVE-2025-4428 (CVSS score: 7.2) A remote code execution vulnerabilityin Endpoint Manager Mobile allowing attackers to execute arbitrary code on the target system. Ivantii has released updates for Endpoint Manager Mobile (EPMM) which addresses one medium and one high severity vulnerability. ” concludes the report.

Mobile

Mobile Telecommunications Authentication Internet

Bad Consumer Security Advice

Schneier on Security

DECEMBER 4, 2018

To remain anonymous and secure on the Internet, invest in a Virtual Private Network account, but remember, the bad guys are very smart, so by the time this column runs, they may have figured out a way to hack into a VPN. And while you're at it, do it for your mobile phone provider and your Internet service provider.

Accountability

Accountability Passwords VPN Mobile

Apple iPhones to get protection against Pegasus Mobile Spyware

CyberSecurity Insiders

JULY 19, 2021

As the media around the world is busy speculating about the targets related to Pegasus Mobile Spying malware, Apple Inc, the American company that is into the production of iPhones has issued a press statement that its engineers are working on a fix to protect the users from becoming victims to the said spying Israeli malware.

Spyware

Spyware Mobile Media Malware

Q&A: SolarWinds, Mimecast hacks portend intensified third-party, supply-chain compromises

The Last Watchdog

JANUARY 25, 2021

Thanks to a couple of milestone hacks disclosed at the close of 2020 and start of 2021, they will forever be associated with putting supply-chain vulnerabilities on the map. Similarly, the SolarWinds and Mimecast hacks are precursors of increasingly clever and deeply-damaging hacks of the global supply chain sure to come.

Hacking

Hacking B2B Authentication Software

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 48

Security Affairs

JUNE 8, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Pure Crypter Malware Analysis: 99 Problems but Detection Ain’t One Attacker exploits misconfigured AI tool to run AI-generated payload Crocodilus Mobile Malware: Evolving Fast, Going Global How Threat Actors Exploit (..)

Malware

Malware Mobile Ransomware Internet

Mobile security threats: reality or myth?

Hot for Security

JUNE 14, 2021

While some security experts might seem over-zealous shouting about the dangers, the vast majority of warnings about mobile security threats are indeed justified. Stalkerware is another big issue on mobile platforms. Mobile threats are in no way a myth. iPhones are not immune to hacks. Platform-agnostic threats.

Mobile

Mobile Malware Spyware Media

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

These include scrutinizing network device configurations, implementing advanced monitoring solutions, and restricting internet exposure of management traffic. Experts suspect the state-sponsored hackers have gathered extensive internet traffic and potentially compromised sensitive data. This is not the case at T-Mobile.”

Telecommunications

Telecommunications Government Mobile Cyber threats

Kyivstar, Ukraine’s largest mobile carrier brought down by a cyber attack

Security Affairs

DECEMBER 12, 2023

The Ukrainian telecommunications company provides communication services and data transmission based on a broad range of fixed and mobile technologies, including 4G (LTE) in Ukraine. The Kyivstar mobile network serves about 26 million mobile customers and more than 1 million broadband fixed internet customers in the country.

Cyber Attacks

Cyber Attacks Mobile Internet Internet

The Rise of “Bulletproof” Residential Networks

Krebs on Security

AUGUST 19, 2019

Traditionally, those connections have been mainly hacked computers, mobile phones, or home routers. Most interestingly, about ten percent of those IPs — more than 7,000 of them — had until late 2018 been under the control of AT&T Mobility.

Wireless

Wireless Mobile Advertising Internet

MY TAKE: Massive data breaches persist as agile software development fosters full-stack hacks

The Last Watchdog

JUNE 9, 2021

Massive data base breaches today generally follow a distinctive pattern: hack into a client -facing application; manipulate an API; follow the data flow to gain access to an overly permissive database or S3 bucket (cloud storage). Password and token harvesting is one of the most common techniques in hacking. A few steps behind.

Data breaches

Data breaches Software Hacking Mobile

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. During transit the message remains encrypted the entire time it is moving across the internet. What that means is only the person sending it and the person receiving it can read it.

Encryption

Encryption Identity Theft Media Telecommunications

Connected contraptions cause conniption for 2024

Malwarebytes

DECEMBER 31, 2024

Its Bluey and dig kits and LEGOs for kids, Fortnite and AirPods and backpacks for tweens, and, for an adult you particularly love, its televisions, air fryers, e-readers, vacuums, dog-feeders, and more, which all seemingly require a mobile app to function. For years, the cybersecurity of these particularly mobile mobiles (sorry) was passable.

Internet

Internet Internet Mobile DDOS

Malware found pre-installed in cheap push-button mobile phones sold in Russia

Security Affairs

SEPTEMBER 6, 2021

Security researcher ValdikSS found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores. A Russian security researcher that goes online with the name of ValdikSS has found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores.

Mobile

Mobile Malware Firmware Manufacturing

Why & Where You Should You Plant Your Flag

Krebs on Security

AUGUST 12, 2020

As KrebsOnSecurity observed back in 2018 , many people — particularly older folks — proudly declare they avoid using the Web to manage various accounts tied to their personal and financial data — including everything from utilities and mobile phones to retirement benefits and online banking services. YOUR CREDIT FILES.

Accountability

Accountability Mobile Banking Passwords

Californian IT company DNA Micro leaks private mobile phone data

Security Affairs

OCTOBER 18, 2023

Once the instance is exposed to the internet – without being secured by authentication – it’s accessible to anyone. IMEI is a unique number assigned to each mobile device and is used to identify a device on a mobile network. If that happens, it can cause disruptions to the mobile service of the device.

Mobile

Mobile Phishing Manufacturing Risk

Vital Tips & Resources to Improve Your Internet Safety

CyberSecurity Insiders

DECEMBER 18, 2021

Online shopping, mobile banking, even accessing your e-mails — all these can expose you to cyber threats. Everything connected to the internet is vulnerable to cyber attacks. Once a site is hacked and criminals get access to the username and password you use there, they can try them on major online banking systems.

Internet

Internet Internet Passwords Banking

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. Multiple security firms soon assigned the hacking group the nickname “ Scattered Spider.” 9, 2024, U.S. technology companies during the summer of 2022.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Ukrainian Cyber Alliance destroyed the connectivity of Russian ISP Nodex

Security Affairs

JANUARY 9, 2025

Ukrainian Cyber Alliance hacked Russian ISP Nodex, stole sensitive data, and wiped systems, highlighting their cyberattack capabilities. Internet monitoring service NetBlocks confirmed a disruption in Nodexs connectivity following the attack on Tuesday night. Internet should work for many. Please reboot your routers.”

Backups

Backups Internet Internet Hacking

Courts Hand Down Hard Jail Time for DDoS

Krebs on Security

JANUARY 14, 2019

Also last week, a 30-year-old in the United Kingdom was sentenced to 32 months in jail for using an army of hacked devices to crash large portions of Liberia’s Internet access in 2016. According to court testimony, Kaye was hired in 2015 to attack Lonestar , Liberia’s top mobile phone and Internet provider.

DDOS

DDOS Internet Internet Spyware

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

T-Mobile detected network intrusion attempts and blocked them

Trending Sources

T-Mobile Investigating Claims of Massive Data Breach

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

Booking.com Phishers May Leave You With Reservations

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Twitter Hacking for Profit and the LoLs

France’s second-largest telecoms provider Free suffered a cyber attack

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

RSAC Fireside Chat: Deploying Hollywood-tested content protection to improve mobile app security

SK Telecom revealed that malware breach began in 2022

Happy 15th Anniversary, KrebsOnSecurity!

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

How to Lose a Fortune with Just One Bad Click

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

When Low-Tech Hacks Cause High-Impact Breaches

BadBox rapidly grows, 190,000 Android devices infected

T Mobile Retailer hacks into Company Servers

South African telecom provider Cell C disclosed a data breach following a cyberattack

STEPS FORWARD: How the Middle East led the U.S. to adopt smarter mobile security rules

Bomb Threat Hoaxer Exposed by Hacked Gaming Site

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

Bad Consumer Security Advice

Apple iPhones to get protection against Pegasus Mobile Spyware

Q&A: SolarWinds, Mimecast hacks portend intensified third-party, supply-chain compromises

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 48

Mobile security threats: reality or myth?

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Kyivstar, Ukraine’s largest mobile carrier brought down by a cyber attack

The Rise of “Bulletproof” Residential Networks

MY TAKE: Massive data breaches persist as agile software development fosters full-stack hacks

Americans urged to use encrypted messaging after large, ongoing cyberattack

Connected contraptions cause conniption for 2024

Malware found pre-installed in cheap push-button mobile phones sold in Russia

Why & Where You Should You Plant Your Flag

Californian IT company DNA Micro leaks private mobile phone data

Vital Tips & Resources to Improve Your Internet Safety

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Ukrainian Cyber Alliance destroyed the connectivity of Russian ISP Nodex

Courts Hand Down Hard Jail Time for DDoS

Stay Connected