Security Affairs

OCTOBER 20, 2021

China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019. ” reads the report published by Crowdstrike.

Telecommunications 116

Telecommunications Mobile Hacking Architecture 116

Security Affairs

MARCH 10, 2023

AT&T is warning some of its customers that some of their information was exposed after the hack of a third-party vendor’s system. AT&T is notifying millions of customers that some of their information was exposed after a third-party vendor was hacked. Social Security Number, account passwords).

Data breaches 88

Data breaches Hacking Wireless Telecommunications 88

Security Affairs

APRIL 11, 2020

San Francisco International Airport (SFO) disclosed a data breach, its websites SFOConnect.com and SFOConstruction.com were hacked last month. The SFO ITT urges anyone who even visited either website using the Internet Explorer web browser to change the device’s password. SecurityAffairs – hacking, data breach).

Data breaches 141

Data breaches Hacking Telecommunications Passwords 141

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches 94

Data breaches Telecommunications Banking Mobile 94

Krebs on Security

FEBRUARY 19, 2020

The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords. Iranian hackers recently have been blamed for hacking VPN servers around the world in a bid to plant backdoors in large corporate networks.

VPN 357

VPN Passwords Software Telecommunications 357

Security Affairs

SEPTEMBER 21, 2022

Russia-linked APT group Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. Russia-linked cyberespionage group Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. SecurityAffairs – hacking, Log4Shell).

Malware 81

Malware Telecommunications DNS Hacking 81

Security Affairs

JANUARY 30, 2024

Additional information about the investigation conducted by Resecurity are available here : [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Dark web)

Engineering 122

Engineering Passwords Telecommunications Accountability 122

Security Affairs

JULY 10, 2021

Mint Mobile is an American telecommunications company which sells mobile phone services and operates as an MVNO on T-Mobile’s cellular network in the United States. An unauthorized person also potentially accessed subscribers’ personal information, including call history, names, addresses, emails, and passwords.

Mobile 139

Mobile Data breaches Telecommunications Passwords 139

Security Affairs

JANUARY 7, 2024

The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors; Over the years, the group enhanced its evasion capabilities. Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns.

Media 113

Media Accountability Telecommunications Government 113

Security Affairs

DECEMBER 14, 2022

Some of the most popular brands don’t enforce a strong password policy, meaning anyone can peer into their owners’ lives. All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network.

Surveillance 128

Surveillance Manufacturing Passwords Internet 128

Security Affairs

DECEMBER 30, 2020

.” T-Mobile said that threat actors did not access names on the account, physical or email addresses, financial data, credit card information, social security numbers, tax ID, passwords, or PINs. The telecommunication giant is in the process of notifying impacted customers. SecurityAffairs – hacking, T-Mobile).

Data breaches 134

Data breaches Mobile Telecommunications Wireless 134

Malwarebytes

MARCH 3, 2022

The LAPSUS$ group is a relative newcomer to the ransomware scene, but it has made a name for itself by bringing down big targets like Impresa, the largest media conglomerate in Portugal, Brazil’s Ministry of Health, and Brazilian telecommunications operator Claro. Hacked back?

Ransomware 85

Ransomware Password Management Passwords Hacking 85

Security Affairs

JUNE 8, 2022

China-linked threat actors have breached telecommunications companies and network service providers to spy on the traffic and steal data. US NSA, CISA, and the FBI published a joint cybersecurity advisory to warn that China-linked threat actors have breached telecommunications companies and network service providers.

Telecommunications 95

Telecommunications Authentication Passwords Accountability 95

Security Affairs

MAY 1, 2024

The experts noticed that the infection chain was distinct, with 99% of infections originating in Turkey, primarily from two major telecommunications providers. The malware passively monitors network packets for “credential markers,” including usernames, passwords, and authentication tokens.

Malware 102

Malware DNS Authentication Telecommunications 102

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks. Pierluigi Paganini.

Mobile 93

Mobile Telecommunications Data breaches Identity Theft 93

Security Affairs

OCTOBER 25, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. SecurityAffairs – hacking, cyber security). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Telecommunications 109

Telecommunications Technology Hacking Malware 109

Security Affairs

AUGUST 18, 2021

Importantly, no phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers.” data breach notification published by the telecommunications giant on its website revealed that the security breach impacted both employees and customers.

Data breaches 100

Data breaches Mobile Telecommunications Wireless 100

Security Affairs

MARCH 12, 2022

The rumors of a cyber attack against Ubisoft circulated online in the last few days, while data extortion group LAPSUS$ claimed to have hacked the company. As a precautionary measure we initiated a company-wide password reset.” SecurityAffairs – hacking, Ubisoft). ” reads the announcement of the company.

Data breaches 87

Data breaches Telecommunications Hacking Cyber Attacks 87

Security Affairs

OCTOBER 19, 2021

Symantec spotted a previously unknown nation-state actor, tracked as Harvester, that is targeting telecommunication providers and IT firms in South Asia. Sectors targeted include telecommunications, government, and information technology (IT). SecurityAffairs – hacking, Harvester). Pierluigi Paganini.

Telecommunications 97

Telecommunications Government Malware Encryption 97

Security Affairs

JUNE 12, 2020

about the A1 hack. The company did not disclose details of the attack, the whistleblower speculates the intruders were members of the Gallium group , a Chinese APT group that was more active between 2018 and mid-2019 when targeted global telecommunication providers worldwide. SecurityAffairs – A1, hacking). Pierluigi Paganini.

Mobile 91

Mobile Telecommunications Advertising Passwords 91

Security Affairs

DECEMBER 31, 2020

The Emotet campaign uses malicious emails that attempt to trick recipients into opening the zipped archive with the password included in the message. Emails accessed in this way require user action: open the file, unzip it with a password. Emails accessed in this way require user action: open the file, unzip it with a password.

Passwords 101

Passwords Malware Telecommunications Banking 101

Krebs on Security

AUGUST 12, 2020

From that story: “The reasoning behind this strategy is as simple as it is alluring: What’s not put online can’t be hacked. For those who can’t be convinced to use a password manager, even writing down all of the account details and passwords on a slip of paper can be helpful, provided the document is secured in a safe place.

Accountability 341

Accountability Mobile Banking Passwords 341

Security Affairs

FEBRUARY 10, 2022

Do not provide your mobile number account information over the phone to representatives that request your account password or pin. Use a variation of unique passwords to access online accounts. Do not store passwords, usernames, or other information for easy login on mobile device applications. Pierluigi Paganini.

Mobile 90

Mobile Cryptocurrency Authentication Accountability 90

Security Affairs

OCTOBER 18, 2021

Sinclair Broadcast Group is a Fortune 500 media company, the group is a publicly-traded American telecommunications conglomerate having annual revenues of $5.9 In July, the company suffered another security incident, in response to the security breach it forced all Sinclair stations to reset their passwords. billion in 2020.

Ransomware 84

Ransomware Media Telecommunications Marketing 84

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.” Pierluigi Paganini.

Data breaches 105

Data breaches Telecommunications Passwords Advertising 105

Security Affairs

AUGUST 27, 2019

reported that Hexane is targeting organizations in the oil and gas industry and telecommunication providers. Lyceum was observed using password spraying and brute-force attacks to compromise email accounts of targeted individuals. Experts pointed out that Lyceum does not use sophisticated hacking techniques. Pierluigi Paganini.

DNS 81

DNS Passwords Penetration Testing Social Engineering 81

Krebs on Security

NOVEMBER 3, 2022

In 2013, Kurittu worked on investigation involving Kivimaki’s use of the Zbot botnet, among other activities Kivimaki engaged in as a member of the hacker group Hack the Planet. Among those who grabbed a copy of the database was Antti Kurittu , a former criminal investigator at the Helsinki Police Department. ”

Data breaches 196

Data breaches Cybercrime Telecommunications Accountability 196

Security Affairs

APRIL 15, 2020

Security researchers from ESET revealed that the infamous Russian hacker group known as Energetic Bear is behind the hack of two San Francisco International Airport (SFO) websites. The SFO ITT urges anyone who even visited either website using the Internet Explorer web browser to change the device’s password. Pierluigi Paganini.

Data breaches 117

Data breaches Passwords Telecommunications Advertising 117

Security Affairs

OCTOBER 31, 2019

. “As many as 95% of the credentials contained unencrypted, or bruteforced and cracked by the attackers, plaintext passwords.” ” The following table shows stolen credentials per industry: Most of the login credentials (95%) include plaintext passwords, 76% of them were compromised during the last 12 months.

Passwords 77

Passwords Telecommunications Advertising Retail 77

Security Affairs

NOVEMBER 22, 2019

The US branch of the telecommunications giant T -Mobile disclosed a security breach that according to the company impacted a small number of customers of its prepaid service. None of your financial data (including credit card information) or social security numbers was involved , and no passwords were compromised.”

Wireless 99

Wireless Data breaches Mobile Telecommunications 99

Security Affairs

OCTOBER 13, 2021

The experts analyzed the case of a campaign targeting the customers of the telecommunication giant Verizon, attackers used a square root symbol, a logical NOR operator, or the checkmark symbol itself. SecurityAffairs – hacking, phishing). ” states the report published by INKY. Follow me on Twitter: @securityaffairs and Facebook.

Phishing 89

Phishing Telecommunications Accountability Marketing 89

SecureWorld News

AUGUST 10, 2021

They can do it the old fashioned way by hacking into it themselves or they can purchase an exploit that gives them access. Now for access as a service, you're getting a username and password to a database, or to the back end of the administrative account, to a hospital or to a bank. The price for network access can range quite a bit.

Telecommunications 98

Telecommunications Marketing Ransomware Accountability 98

SecureList

DECEMBER 12, 2023

Every year is abundant with major data leaks, biggest data breaches and hacks drawing massive media attention (such as Medibank and Optus data breach, Twitter data breach, and Uber and Rockstar compromise in 2022 and in T-Mobile , MailChimp and OpenAI in 2023). But are we really conscious of the true scale of the threat?

Data breaches 81

Data breaches Accountability Telecommunications Malware 81

Security Boulevard

JUNE 26, 2023

Lack of access to security features, such as passwords for admins, may result in a data breach where unauthorized persons within the organization may access sensitive data and leak it to malicious insiders. Every organization is, to varying degrees, potentially at risk of experiencing a data breach.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Krebs on Security

APRIL 2, 2019

31, 2019, Rezvesz said his company recently was the subject of an international search warrant executed jointly by the Royal Canadian Mounted Police (RCMP) and the Canadian Radio-television and Telecommunications Commission (CRTC). “In In an “official press release” posted to pastebin.com on Mar. 2017 analysis of the RAT.

Advertising 220

Advertising Malware Marketing Software 220

eSecurity Planet

JULY 18, 2023

Microsoft has hardened security following a Chinese hack of U.S. Also read: How to Improve Email Security for Enterprises & Businesses Sophisticated Authentication Hack Microsoft noted that Storm-0558’s core working hours are impressively businesslike, from 8 a.m. China Standard Time, Monday through Friday.

Accountability 80

Accountability Government Authentication Telecommunications 80

Security Affairs

JULY 13, 2019

“ Malware then guesses routers’ passwords , which new research from Avast shows are often weak. The router attacks involved an exploit kit that attempts to find the router IP on a network, then attempts to guess the password using common login credentials. ” reads a blog post published by Avast. concludes Avast.

DNS 74

DNS Passwords Advertising Banking 74