Hacking, Internet and Telecommunications

Arguing Against CALEA

Schneier on Security

APRIL 8, 2025

Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. The hacks reportedly may have resulted in the “vast collection of internet traffic”; from the telecom and internet giants.

Telecommunications

Telecommunications Internet Internet Government

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. Do NOT conduct CFPB work using mobile voice calls or text messages,” reads the email sent to the employees referencing a recent government statement acknowledging the telecommunications infrastructure attack.

Hacking

Hacking Internet Internet Government

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. is a French telecommunications company, subsidiary of Iliad S.A. that provides voice, video, data, and Internet telecommunications to consumers in France. Free S.A.S.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

Exposed eyes: 40,000 security cameras vulnerable to remote hacking

Security Affairs

JUNE 12, 2025

Over 40,000 internet-exposed security cameras worldwide are vulnerable to remote hacking, posing serious privacy and security risks. Bitsight warns that over 40,000 security cameras worldwide are exposed to remote hacking due to unsecured HTTP or RTSP (Real-Time Streaming Protocol) access. Most of the cameras are in the U.S.

Hacking

Hacking Telecommunications Internet Internet

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

Cell Networks Hacked by (Probable) Nation-State Attackers

Schneier on Security

JULY 9, 2019

The researchers found the hackers got into one of the cell networks by exploiting a vulnerability on an internet-connected web server to gain a foothold onto the provider's internal network. The attack was aiming to obtain CDR records of a large telecommunications provider.

Hacking

Hacking Telecommunications Malware Passwords

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. The Chinese APT focuses on government entities and telecommunications companies in Southeast Asia.

Mobile

Mobile Telecommunications Data breaches Hacking

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Security Affairs

MARCH 27, 2025

Arkana Security, a new ransomware group, claims to have breached the telecommunications provider WideOpenWest (WOW!). The new ransomware group Arkana Security claims to have hacked US telecom provider WOW!, is a US-based telecommunications company that provides broadband internet, cable TV, and phone services.

Hacking

Hacking Telecommunications Data breaches Internet

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. According to public sources, the threat actors targeted ICS of at least 11 Ukrainian telecommunications providers leading to the disruption of their services. ” reads the advisory.

Telecommunications

Telecommunications Authentication Data collection Passwords

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. for its involvement in the activities of the Salt Typhoon APT group, which recently compromised multiple U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

These include scrutinizing network device configurations, implementing advanced monitoring solutions, and restricting internet exposure of management traffic. Experts suspect the state-sponsored hackers have gathered extensive internet traffic and potentially compromised sensitive data. ” reads the joint advisory.

Telecommunications

Telecommunications Government Mobile Cyber threats

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI. law enforcement requests pursuant to court orders.

Government

Government Telecommunications Surveillance Risk

Massive DDoS attack brought down 25% Iranian Internet connectivity

Security Affairs

FEBRUARY 9, 2020

Iran comes under cyber-attack again, a massive offensive brought down a large portion of the Iranian access to the Internet. Iran infrastructures are under attack, a massive cyberattack brought down a large portion of the Iranian access to the Internet, according to the experts the national connectivity fell to 75%.

DDOS

DDOS Internet Internet Telecommunications

FBI Shuts Down Chinese Botnet

Schneier on Security

SEPTEMBER 19, 2024

The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types of internet-connected devices around the world, including home routers, cameras, digital video recorders, and NAS drives.

Telecommunications

Telecommunications Media Malware Internet

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

“Like the entire telecommunications industry, T-Mobile has been closely monitoring ongoing reports about a series of highly coordinated cyberattacks by bad actors known as “Salt Typhoon” that are reported to be linked to Chinese state-sponsored operations. ” reads the report published by the telecommunications company.

Mobile

Mobile Telecommunications Government Internet

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

Security Affairs

OCTOBER 29, 2023

IT Army of Ukraine hacktivists have temporarily disrupted internet services in some of the territories that have been occupied by Russia. Ukrainian hacktivists belonging to the IT Army of Ukraine group have temporarily disabled internet services in some of the territories that have been occupied by the Russian army.

Internet

Internet Internet Telecommunications DDOS

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI. law enforcement requests pursuant to court orders.

Government

Government Telecommunications Surveillance Risk

US Cyber Command and Microsoft Are Both Disrupting TrickBot

Schneier on Security

OCTOBER 15, 2020

The crooks running the Trickbot botnet typically use these config files to pass new instructions to their fleet of infected PCs, such as the Internet address where hacked systems should download new updates to the malware. To execute this action, Microsoft formed an international group of industry and telecommunications providers.

Telecommunications

Telecommunications Internet Internet Malware

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. During transit the message remains encrypted the entire time it is moving across the internet. What that means is only the person sending it and the person receiving it can read it.

Encryption

Encryption Identity Theft Media Telecommunications

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. for its involvement in the activities of the Salt Typhoon APT group, which recently compromised multiple U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

China-linked hackers target telecommunication providers in the Middle East

Security Affairs

MARCH 24, 2023

Researchers reported that China-linked hackers targeted telecommunication providers in the Middle East in the first quarter of 2023. In the first quarter of 2023, SentinelLabs researchers spotted the initial phases of attacks against telecommunication providers in the Middle East. ” reads the report published by SentinelLabs.

Telecommunications

Telecommunications Malware Mobile Hacking

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

Security Affairs

SEPTEMBER 5, 2021

A massive DDoS hit New Zealand ‘s third-largest internet operator isolating parts of the country from the Internet. A massive DDoS hit Vocus ISP, New Zealand ‘s third-largest internet operator, isolating parts of the country from the Internet. SecurityAffairs – hacking, DDoS). Pierluigi Paganini.

DDOS

DDOS Internet Internet Telecommunications

SFO discloses data breach following the hack of 2 of its websites

Security Affairs

APRIL 11, 2020

San Francisco International Airport (SFO) disclosed a data breach, its websites SFOConnect.com and SFOConstruction.com were hacked last month. The SFO ITT urges anyone who even visited either website using the Internet Explorer web browser to change the device’s password. SecurityAffairs – hacking, data breach).

Data breaches

Data breaches Hacking Telecommunications Passwords

China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet

Internet Internet DNS Telecommunications

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

Security Affairs

MAY 26, 2025

EclecticIQ observed active exploitation of Ivanti EPMM flaws starting May 15, 2025 (the same day Ivanti disclosed two critical vulnerabilities) targeting internet-exposed systems. “EclecticIQ analysts observed active exploitation of this vulnerability chain in the wild, targeting internet-facing Ivanti EPMM deployments.”

Mobile

Mobile Telecommunications Authentication Internet

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

Security Affairs

FEBRUARY 13, 2025

On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware. “ Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Russia)

Telecommunications

Telecommunications DNS Hacking Passwords

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

OCTOBER 20, 2021

China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019. ” reads the report published by Crowdstrike.

Telecommunications

Telecommunications Mobile Hacking Architecture

ICANN warns of large-scale attacks on Internet infrastructure

Security Affairs

FEBRUARY 24, 2019

Large-scale attacks are threatening the global Internet infrastructure, the alarm was launched by the Internet Corporation for Assigned Names and Numbers (ICANN). After an emergency meeting, the Internet Corporation for Assigned Names and Numbers (ICANN) confirmed that the global Internet infrastructure is facing large-scale attacks.

Internet

Internet Internet DNS Telecommunications

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

Security Affairs

AUGUST 10, 2020

In March 2020, The Ministry of Telecommunications (MoTC) issued a directive to all operators in Myanmar with a secret list of 230 sites to be blocked due to the nature of the content; adult content and fake news. There are several aspects of the Internet blocking in Myanmar that raise questions. Circumvention of Internet blocking.

Internet

Internet Internet Telecommunications DNS

Salt Typhoon Expands Espionage Campaign, Targets Cisco Routers

SecureWorld News

FEBRUARY 19, 2025

telecommunications providers , including AT&T, Verizon, and Lumen Technologies. internet service provider, a U.K.-affiliated Limit exposure : Disable unnecessary web UI access and restrict administrative interfaces from internet exposure. The impacted companies include a U.S. Despite significant media coverage and U.S.

Telecommunications

Telecommunications Internet Internet Technology

New hacking group ‘Metador’ lurking in ISP networks for months

Bleeping Computer

SEPTEMBER 25, 2022

A previously unknown threat actor that researchers have named 'Metador' has been breaching telecommunications, internet services providers (ISPs), and universities for about two years. [.].

Telecommunications

Telecommunications Hacking Internet Internet

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

Like the United States, China is more likely to try to get data from the US communications infrastructure, or from the large Internet companies that already collect data on our every move as part of their business model. If there's any lesson from all of this, it's that everybody spies using the Internet. The United States does it.

Surveillance

Surveillance Wireless Government Internet

Metador, a never-before-seen APT targeted ISPs and telco for about 2 years

Security Affairs

SEPTEMBER 26, 2022

A previously undetected hacking group, tracked as Metador, has been targeting telecommunications, internet services providers (ISPs), and universities for about two years. SecurityAffairs – hacking, APT). The complete analysis is available here: [link]. Follow me on Twitter: @securityaffairs and Facebook.

Telecommunications

Telecommunications Authentication Malware Internet

Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers

The Hacker News

APRIL 13, 2022

The Chinese-backed Hafnium hacking group has been linked to a piece of a new malware that's used to maintain persistence on compromised Windows environments.

Malware

Malware Telecommunications Internet Internet

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Security Affairs

MARCH 28, 2022

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure. On March 29, 2022, a massive cyber attack caused a major internet disruption across Ukraine on national provider Ukrtelecom. SecurityAffairs – hacking, Ukraine). Pierluigi Paganini.

Internet

Internet Internet Mobile Cyber Attacks

China-linked APT UNC3886 targets EoL Juniper routers

Security Affairs

MARCH 12, 2025

Its primary focus is on defense, technology, and telecommunications sectors in the US and Asia. While UNC3886 previously focused their operations on network edge devices, this activity demonstrated theyre also targeting internal networking infrastructure, such as Internet Service Provider (ISP) routers.

Telecommunications

Telecommunications Malware DDOS Technology

New law will issue bans, fines for using default passwords on smart devices

Malwarebytes

NOVEMBER 25, 2021

The idea of connecting your entire home to the internet was once a mind-blowing concept. the UK’s leading consumer awareness and review site, say that smart devices could be exposed to over 12,000 hacking and unknown scanning attacks in a single week. Thanks to smart devices, that concept is now a reality.

Passwords

Passwords Telecommunications Internet Internet

Documents Unsealed: North Korea's Global Hacking Campaign

SecureWorld News

FEBRUARY 18, 2021

It may be the most complete picture we've ever had of North Korean hacking campaigns. The unsealed documents highlight a number of attack targets and motives in an effort to hack, digitally intrude, and defraud. The hacking indictment filed in the U.S. North Korean hacking methods and attack vectors. global targets.

Hacking

Hacking Cryptocurrency Computers and Electronics Banking

Federal Communications Commission has cut off government funding for equipment from Chinese firms

Security Affairs

NOVEMBER 25, 2019

telecommunications providers from using government subsidies to buy equipment from Huawei or ZTE. this means that the economic impact on US telecommunication firms could be severe. The Chinese giant Huawei was already excluded by several countries from building their 5G internet networks.

Government

Government Telecommunications Wireless Internet

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

The number of internet-facing cameras in the world is growing exponentially. Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. New research by Cybernews shows an exponential rise in the uptake of internet-facing cameras. Surge in internet-facing cameras. Most insecure brands.

Surveillance

Surveillance Manufacturing Internet Internet

AT&T confirmed that a data breach impacted 73 million customers

Security Affairs

MARCH 30, 2024

ShinyHunters is a popular hacking crew that is known to have offered for sale data stolen from tens of major organizations, including Tokopedia , Homechef , Chatbooks.com , Microsoft , and Minted. ” reads a statement published by the telecommunication giant.

Data breaches

Data breaches Telecommunications Cybercrime Hacking

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

Security Affairs

JULY 19, 2021

Threat actors that goes online with the moniker ZeroX claim to have stolen 1 TB of sensitive data from the Saudi Arabian petroleum and natural gas giant end it is offering for sale it on multiple hacking forums. SecurityAffairs – hacking, Saudi Aramco). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Telecommunications

Telecommunications Data breaches Engineering Wireless

NCSC: New UK law bans default passwords on smart devices

Security Affairs

APRIL 30, 2024

The law, known as the Product Security and Telecommunications Infrastructure act (or PSTI act), will be effective on April 29, 2024. Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, smart device manufacturers) ” reads the announcement published by NCSC.

Passwords

Passwords Manufacturing Telecommunications Cyber Attacks

ShroudedSnooper threat actors target telecom companies in the Middle East

Security Affairs

SEPTEMBER 19, 2023

ShroudedSnooper threat actors are targeting telecommunication service providers in the Middle East with a backdoor called HTTPSnoop. Cisco Talos researchers recently discovered a new stealthy implant dubbed HTTPSnoop that was employed in attacks against telecommunications providers in the Middle East. ” continues the report.

Telecommunications

Telecommunications Internet Internet Malware

Arguing Against CALEA

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Trending Sources

France’s second-largest telecoms provider Free suffered a cyber attack

Exposed eyes: 40,000 security cameras vulnerable to remote hacking

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Cell Networks Hacked by (Probable) Nation-State Attackers

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Massive DDoS attack brought down 25% Iranian Internet connectivity

FBI Shuts Down Chinese Botnet

T-Mobile detected network intrusion attempts and blocked them

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

US Cyber Command and Microsoft Are Both Disrupting TrickBot

Americans urged to use encrypted messaging after large, ongoing cyberattack

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

China-linked hackers target telecommunication providers in the Middle East

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

SFO discloses data breach following the hack of 2 of its websites

China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

China-linked LightBasin group accessed calling records from telcos worldwide

ICANN warns of large-scale attacks on Internet infrastructure

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

Salt Typhoon Expands Espionage Campaign, Targets Cisco Routers

New hacking group ‘Metador’ lurking in ISP networks for months

On Chinese "Spy Trains"

Metador, a never-before-seen APT targeted ISPs and telco for about 2 years

Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

China-linked APT UNC3886 targets EoL Juniper routers

New law will issue bans, fines for using default passwords on smart devices

Documents Unsealed: North Korea's Global Hacking Campaign

Federal Communications Commission has cut off government funding for equipment from Chinese firms

3.5m IP cameras exposed, with US in the lead

AT&T confirmed that a data breach impacted 73 million customers

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

NCSC: New UK law bans default passwords on smart devices

ShroudedSnooper threat actors target telecom companies in the Middle East

Stay Connected