What Makes Telecommunication Companies Such a Fertile Ground for Attack?

The State of Security

Telecommunication is the first, and most robust network ever invented. Prior to the invention and development of the internet, what other way could a person pick up a device, and “dial” a few numbers and […]… Read More.

What Makes Telecommunication Companies Such a Fertile Ground for Attack?

Security Boulevard

Telecommunication is the first, and most robust network ever invented. Prior to the invention and development of the internet, what other way could a person pick up a device, and “dial” a few numbers and […]… Read More.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Internet Backbone Giant Lumen Shuns.RU

Krebs on Security

Lumen Technologies , an American company that operates one of the largest Internet backbones and carries a significant percentage of the world’s Internet traffic, said today it will stop routing traffic for organizations based in Russia. ru) from the Internet.

US eases sanctions that may lead to Russia's Internet isolation

Bleeping Computer

has announced exemptions on previously imposed sanctions on Russia related to telecommunications and internet-based communications, likely to prevent Russians from being isolated from Western news sources. [.]. Today, the U.S.

Massive DDoS attack brought down 25% Iranian Internet connectivity

Security Affairs

Iran comes under cyber-attack again, a massive offensive brought down a large portion of the Iranian access to the Internet. Confirmed: Internet partially shut down #Iran from 11:45 a.m. ” #CyberAttack at 11:44 local time disrupted internet services in #Iran for an hour.

DDOS 113

Germany to force ISPs to give discounts for slow Internet speeds

Bleeping Computer

A new regulation coming in the form of an amendment in the Telecommunications Act of Germany could radically change the relationship between consumers and internet service providers. [.].

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

Krebs on Security

An analysis of the malicious file and other submissions by the same VirusTotal user suggest the account that initially flagged the backdoor as suspicious belongs to IT personnel at the National Telecommunications and Information Administration (NTIA), a division of the U.S. On Aug.

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

A China-linked hacking group, tracked as LightBasin (aka UNC1945 ), hacked mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies.

New law will issue bans, fines for using default passwords on smart devices

Malwarebytes

The idea of connecting your entire home to the internet was once a mind-blowing concept. This law covers smartphones, routers, games consoles, toys, speakers, security cameras, internet-enabled white goods (fridge, washing machine, etc.)

ICANN warns of large-scale attacks on Internet infrastructure

Security Affairs

Large-scale attacks are threatening the global Internet infrastructure, the alarm was launched by the Internet Corporation for Assigned Names and Numbers (ICANN). After an emergency meeting, the Internet Corporation for Assigned Names and Numbers (ICANN) confirmed that the global Internet infrastructure is facing large-scale attacks. ICANN warns of “an ongoing and significant risk” to key components of the Internet infrastructure.

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

Security Affairs

A massive DDoS hit New Zealand ‘s third-largest internet operator isolating parts of the country from the Internet. A massive DDoS hit Vocus ISP, New Zealand ‘s third-largest internet operator, isolating parts of the country from the Internet.

DDOS 103

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

Security Affairs

In March 2020, The Ministry of Telecommunications (MoTC) issued a directive to all operators in Myanmar with a secret list of 230 sites to be blocked due to the nature of the content; adult content and fake news. Circumvention of Internet blocking.

Venezuela – Power outage knocked out part of the internet connectivity

Security Affairs

A power outage and fluctuations in supply across Venezuela 1 March 2020, knocked out approximately 35% of the country’s telecommunications infrastructure. Venezuela suffers major power outage knocking out internet connectivity.

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Security Affairs

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure. On March 29, 2022, a massive cyber attack caused a major internet disruption across Ukraine on national provider Ukrtelecom.

Podcast Episode 122: will 5G increase Internet of Things Risk?

The Security Ledger

Telecommunications firms like to talk up all the great things that so-called 5G cellular networks will bring to smart phones. But what new kinds of Internet of Things use cases may become possible? Telecommunications firms like to talk up all the great things that so-called 5G cellular networks will bring to smart phones. But what new kinds of Internet of Things use cases may become possible? But what about the Internet of Things?

RuNet – Russia successfully concluded tests on its Internet infrastructure

Security Affairs

Russia successfully disconnected from the internet. Russia’s government announced that it has successfully concluded a series of tests for its RuNet intranet aimed at country disconnection from the Internet.

Cybersecurity Risks of 5G – And How to Control Them

eSecurity Planet

Exposing the Internet of Things (IoT) Universe. The National Telecommunications and Information Administration (NTIA) released its National Strategy to Secure 5G implementation plan starting in January. 5G is on the cusp of widespread adoption.

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

Security Boulevard

An analysis of the malicious file and other submissions by the same VirusTotal user suggest the account that initially flagged the backdoor as suspicious belongs to IT personnel at the National Telecommunications and Information Administration (NTIA), a division of the U.S. On Aug.

Spotlight Podcast: How DU Telecom Manages Digital Transformation Risk

The Security Ledger

Business leaders talk about Industry 4.0 , Internet of Things and, increasingly, Digital Transformation. But for every benefit that flows from innovations like mobility, cloud computing, DEVOPS and agile development or the Internet of Things, there is a challenge.

Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers

The Hacker News

The threat actor is said to have targeted entities in the telecommunication, internet service provider and data services sectors from August 2021 to February 2022, expanding from the initial victimology patterns observed during its attacks

Telegram banned by Brazilian Supreme Court over missed emails

Bleeping Computer

Brazilian Supreme Federal Court Justice Alexandre de Moraes banned Telegram on Friday from operating in the country and asked the National Telecommunications Agency to notify internet providers to block the messaging app within five days. [.].

Criminals were inside Syniverse for 5 years before anyone noticed

Malwarebytes

” In an email interview with Motherboard, Karsten Nohl, a security researcher is quoted saying, “Syniverse systems have direct access to phone call records and text messaging, and indirect access to a large range of Internet accounts protected with SMS 2-factor authentication.

EU calls for End to Default Passwords on Internet of Things

The Security Ledger

A group representing European telecommunications firms last week published technical specifications for securing a wide range of consumer Internet of Things devices including toys, smart cameras and wearable health trackers. The post EU calls for End to Default Passwords on Internet of Things appeared first on The Security Ledger.

Secret Backdoors Found in German-made Auerswald VoIP System

The Hacker News

Multiple backdoors have been discovered during a penetration test in the firmware of a widely used voice over Internet Protocol (VoIP) appliance from Auerswald, a German telecommunications hardware manufacturer, that could be abused to gain full administrative access to the devices.

South Korean telco KT suffers nationwide outage after routing error

Bleeping Computer

The second-largest telecommunications provider in South Korea, KT Corporation, has suffered a nationwide outage today, leaving all its 16.5 million customers without internet connectivity and telephony services for about 40 minutes. [.].

Iran's Lyceum Hackers Target Telecoms, ISPs in Israel, Saudi Arabia, and Africa

The Hacker News

A state-sponsored threat actor allegedly affiliated with Iran has been linked to a series of targeted attacks aimed at internet service providers (ISPs) and telecommunication operators in Israel, Morocco, Tunisia, and Saudi Arabia, as well as a ministry of foreign affairs (MFA) in Africa, new findings reveal.

New Cyber Espionage Group Targeting Ministries of Foreign Affairs

The Hacker News

Cybersecurity researchers on Thursday took the wraps off a new cyberespionage group that has been behind a series of targeted attacks against diplomatic entities and telecommunication companies in Africa and the Middle East since at least 2017.

Social media partially disrupted in Cuba amid anti-government protests

Security Affairs

AS27725) including Cubacel, the cellular network operated by Cuba’s sole telecommunications company.” VPN services have yet to be blocked in the country, allowing citizens to bypass internet censorship.

Media 95

RansomEXX Ransomware Impacts Ecuador’s Corporación Nacional de Telecomunicaciones CNT

Heimadal Security

The Corporación Nacional de Telecomunicaciones, CNT EP is the public telecommunications company in Ecuador that offers fixed telephony services local, regional and international, Internet Access (Dial-Up, DSL, mobile Internet), satellite television, and mobile telephony in Ecuadorian territory.

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Security Affairs

As with many inventions of the 20th century, the internet has drastically changed using the phone. Once a vital necessity in every building, PBX boxes are driven towards extinction by devices supporting Voice over Internet Protocol (VoIP). Breaking News Hacking Internet of Things VOIP

Exploitation of the CVE-2021-40444 vulnerability in MSHTML

SecureList

We are currently seeing attempts to exploit the CVE-2021-40444 vulnerability targeting companies in the research and development sector, the energy sector and large industrial sectors, banking and medical technology development sectors, as well as telecommunications and the IT sector. Summary.

Opinion: Staying Secure Through 5G Migration

The Security Ledger

To achieve their 5G transformation, telecommunications providers require security solutions and platforms built from the ground up for modern, dynamic business models.

Recently a large chunk of European mobile traffic was rerouted through China Telecom

Security Affairs

Demchak and Yuval Shavitt published a paper that detailed how China Telecom has been misdirecting Internet traffic through China over the past years. The term BGP hijacking is used to indicate the illegitimate takeover of groups of IP addresses by corrupting Internet routing tables maintained using the Border Gateway Protocol (BGP). “Today’s incident shows that the internet has not yet eradicated the problem of BGP route leaks,” concludes Oracle.

Episode 149: How Real is the Huawei Risk?

The Security Ledger

In this episode of the podcast we're joined by Priscilla Moriuchi of the firm Recorded Future, which released a report this week analyzing the security risks posed by Huawei, the Chinese telecommunications and technology giant. Data Israeli Group Exploited WhatsApp to Spy on Users Forty Year Old GPS Satellites tell us lots about securing the Internet of Things.

Risk 40

AIs and Fake Comments

Schneier on Security

The big telecommunications companies paid millions of dollars to specialist “AstroTurf” companies to generate public comments. This month, the New York state attorney general issued a report on a scheme by “U.S. Companies and Partisans [to] Hack Democracy.”

On Executive Order 12333

Schneier on Security

Can We Stop Pretending SMS Is Secure Now?

Krebs on Security

Most large and legacy telecommunications providers validate transfer requests related to their customers by consulting NPAC , or the Number Portability Administration Center. But he suspects some of the smaller wired and wireless telecommunications firms may still be vulnerable.

GUEST ESSAY: Why it’s worrisome that China has integrated Huawei switches into telecoms worldwide

The Last Watchdog

Huawei Technologies, or Huawei for short, is a Chinese telecommunications firm that has been fed tens of billions of dollars in financial assistance by the Chinese government on a scale of subsidization that dwarfs the next closest competitors’ monetary receipt.

DDoS attacks in Q4 2020

SecureList

In October, telecommunications firm Telenor Norway was another to fall victim. In 2020, when much of life shifted online, internet resources repeatedly suffered from surges in totally legitimate activity. News overview.

DDOS 103

For nearly a year, Brazilian users have been targeted with router attacks

Security Affairs

“The password “gvt12345”, for example, suggests that hackers target users with routers from the former Brazilian internet service provider (ISP) GVT, which was acquired by Teleônica Brasil, and is the largest telecommunications company in the country.” Breaking News Cyber Crime Hacking Internet of Things Malware botnet CSRF DNS hijacking hacking news information security news IoT Pierluigi Paganini router attacks Security Affairs Security News

Section 889: the US Regulation that extends far beyond the US

IT Security Guru

It went into effect on 13 th August 2020 and addresses the new prohibition on the use of banned telecommunications equipment and services, while also clarifying the ban from 2019 on buying such equipment. the telecommunications and video surveillance services or equipment they work with.??

DDoS attacks in Q1 2021

SecureList

Maltese Internet service provider Melita was also hit by ransomware: a showcase DDoS attack disrupted services. Only now, instead of flooding online platforms with junk traffic, cybercriminals sought to deprive educational institutions of internet access. News overview.

DDOS 80

Cell Networks Hacked by (Probable) Nation-State Attackers

Schneier on Security

The researchers found the hackers got into one of the cell networks by exploiting a vulnerability on an internet-connected web server to gain a foothold onto the provider's internal network. Original report : Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers.