Telecommunications - Cyber Security Informer

U.S. Confirms Chinese Hackers Compromised Telecommunications Networks

SecureWorld News

NOVEMBER 15, 2024

telecommunications infrastructure. We have identified that PRC-affiliated actors have compromised networks at multiple telecommunications companies to enable the theft of customer call records data," CISA and the FBI explained in the joint release. The compromised data also included information acquired by U.S.

Telecommunications

Telecommunications Government Surveillance Cybersecurity

Chinese Cyber Espionage Campaign Targeting U.S. Telecommunications

SecureWorld News

DECEMBER 6, 2024

telecommunications networks and other organizations. Critical infrastructure at risk : Telecommunications networks and organizations with global footprints are prime targets for intelligence-gathering campaigns. Recent disclosures from U.S.

Telecommunications

Telecommunications Risk Cybersecurity Government

Earth Kurma APT is actively targeting government and telecommunications orgs in Southeast Asia

Security Affairs

APRIL 28, 2025

Earth Kurma APT carried out a sophisticated campaign against government and telecommunications sectors in Southeast Asia. Organizations face potential compromise of sensitive government and telecommunications data, the researchers speculate the attackers maintained prolonged, undetected access to their networks.

Telecommunications

Telecommunications Government Malware Hacking

Arguing Against CALEA

Schneier on Security

APRIL 8, 2025

Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. This has greatly expanded the “attack surface” that must be defended to prevent unauthorized wiretaps, especially at scale.

Telecommunications

Telecommunications Government Internet Internet

Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms

The Hacker News

JULY 3, 2025

The French cybersecurity agency on Tuesday revealed that a number of entities spanning governmental, telecommunications, media, finance, and transport sectors in the country were impacted by a malicious campaign undertaken by a Chinese hacking group by weaponizing several zero-day vulnerabilities in Ivanti Cloud Services Appliance (CSA) devices.

Telecommunications

Telecommunications Government Media Hacking

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

is a French telecommunications company, subsidiary of Iliad S.A. that provides voice, video, data, and Internet telecommunications to consumers in France. French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. Free S.A.S.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

“The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” The Chinese APT focuses on government entities and telecommunications companies in Southeast Asia.

Mobile

Mobile Telecommunications Data breaches Hacking

Black Basta ransomware gang hit BT Group

Security Affairs

DECEMBER 4, 2024

British multinational telecommunications holding company BT Group (formerly British Telecom) announced it has shut down some of its servers following a Black Basta ransomware attack. BT Group (formerly British Telecom)’s Conferencing division shut down some of its servers following a Black Basta ransomware attack.

Ransomware

Ransomware Telecommunications Healthcare Insurance

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

The Hacker News

JULY 22, 2025

The cybersecurity company said it observed first exploitation attempts targeting an unnamed major Western government, with the activity intensifying on July 18 and 19, spanning government, telecommunications, and software

Telecommunications

Telecommunications Government Software Cybersecurity

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI.

Government

Government Telecommunications Surveillance Risk

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” reads the report published by the telecommunications company. “To ” reads the joint advisory.

Telecommunications

Telecommunications Government Mobile Cyber threats

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

The Hacker News

JUNE 23, 2025

Federal Bureau of Investigation (FBI) have issued an advisory warning of cyber attacks mounted by the China-linked Salt Typhoon actors to breach major global telecommunications providers as part of a cyber espionage campaign. The Canadian Centre for Cyber Security and the U.S. to access configuration

Telecommunications

Telecommunications Cyber Attacks Software

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI.

Government

Government Telecommunications Surveillance Risk

CL-STA-0969 Installs Covert Malware in Telecom Networks During 10-Month Espionage Campaign

The Hacker News

AUGUST 2, 2025

Telecommunications organizations in Southeast Asia have been targeted by a state-sponsored threat actor known as CL-STA-0969 to facilitate remote control over compromised networks.

Telecommunications

Telecommunications Malware

TalkTalk confirms data breach involving a third-party platform

Security Affairs

JANUARY 27, 2025

UK telecommunications firm TalkTalk disclosed a data breach after a threat actor announced the hack on a cybercrime forum. UK telecommunications company TalkTalk confirmed a data breach after a threat actor claimed responsibility for the cyber attack on a cybercrime forum and offered for sale alleged customer data.

Data breaches

Data breaches Telecommunications Cybercrime Hacking

Google Docs and Weebly Weaponized in New Phishing Scheme

Penetration Testing

NOVEMBER 24, 2024

Financially motivated threat actors targeted the telecommunications and financial sectors... The post Google Docs and Weebly Weaponized in New Phishing Scheme appeared first on Cybersecurity News.

Phishing

Phishing Telecommunications Cybersecurity

Russia warns financial sector organizations of IT service provider LANIT compromise

Security Affairs

FEBRUARY 25, 2025

The group serves various sectors, including finance, government, healthcare, and telecommunications. Founded in 1989, LANIT offers a wide range of IT solutions, including system integration, software development, cybersecurity, cloud services, and IT consulting.

Telecommunications

Telecommunications Healthcare Software Technology

Germany limits police spyware use to serious crimes

Security Affairs

AUGUST 9, 2025

“When considered in an overall assessment, source telecommunications surveillance causes a very severe interference with both Art. . “The interference with both the fundamental right protecting IT-systems and Art. ” states the Germany’s top court. 10(1) of the Basic Law and the fundamental right protecting IT-systems.

Spyware

Spyware Surveillance Telecommunications Encryption

China-based SMS Phishing Triad Pivots to Banks

Krebs on Security

APRIL 10, 2025

SilentPush found the Smishing Triad now spoofs recognizable brands in a variety of industry verticals across at least 121 countries and a vast number of industries, including the postal, logistics, telecommunications, transportation, finance, retail and public sectors.

Phishing

Phishing Banking Mobile Retail

Salt Typhoon breach: Chinese APT compromises U.S. Army National Guard network

Security Affairs

JULY 16, 2025

The nation-state threat actor, tracked as Salt Typhoon , was previously accused of hacking US telecommunications giants AT&T and Verizon, along with Lumen Technologies and other service providers in the US and abroad, to compromise wiretap systems. telecommunications providers by exploiting unpatched Cisco IOS XE network devices. “The

Telecommunications

Telecommunications Hacking Government Data collection

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned Chinese firm Sichuan Juxinhe Network Technology Co., for its involvement in the activities of the Salt Typhoon APT group, which recently compromised multiple U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

News alert: Knocknoc raises seed funding to scale its just-in-time network access control technology

The Last Watchdog

MARCH 19, 2025

” Knocknoc is already in use in Australian and US critical infrastructure, large telecommunications networks and media companies. . “Knocknoc is a terrific way for organisations to quickly and easily reduce their exposure to the types of attacks that are plaguing enterprises right now,” said Gray.

Technology

Technology Telecommunications Media Authentication

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Storm-2372s targets during this time have included government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and energy/oil and gas in Europe, North America, Africa, and the Middle East.”

Phishing

Phishing Authentication Telecommunications Government

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

“Like the entire telecommunications industry, T-Mobile has been closely monitoring ongoing reports about a series of highly coordinated cyberattacks by bad actors known as “Salt Typhoon” that are reported to be linked to Chinese state-sponsored operations. ” reads the report published by the telecommunications company.

Mobile

Mobile Telecommunications Government Internet

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The malspam messages had the topic Free primary legal aid use a password-protected attachment Algorithm of actions of members of the family of a missing serviceman LegalAid.rar.

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

Exposed eyes: 40,000 security cameras vulnerable to remote hacking

Security Affairs

JUNE 12, 2025

Analysis by organizational sector showed the Telecommunications sector (79%) dominated due to widespread consumer use. Excluding telecommunications, the technology sector has the most exposed cameras (28.4%), followed by media (19.6%), utilities (11.9%), business services (10.7%), and education (10.6%).

Hacking

Hacking Telecommunications Surveillance Internet

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

The Last Watchdog

JANUARY 7, 2025

Advanced detection CyTwist recently demonstrated its advanced detection capabilities during a red team simulation with a major telecommunications provider. By leveraging advanced behavioral analysis, CyTwist Profiler identifies new and emerging threats in real time, stopping attackers before they can cause harm.

Threat Detection

Threat Detection Engineering Malware Artificial Intelligence

Thai police arrested Chinese hackers involved in SMS blaster attacks

Security Affairs

NOVEMBER 25, 2024

Yang faces charges for illegal telecommunications operations, with investigations ongoing to uncover his network and mastermind Thai police issued warrants for 24 suspects, including 9 foreigners and 15 Thais. The equipment sent nearly 1 million fraudulent messages in 3 days. Ten suspects, 9 Thai and 1 Myanmar national, have been arrested.

Mobile

Mobile Scams Technology Telecommunications

African multinational telco giant MTN Group disclosed a data breach

Security Affairs

APRIL 26, 2025

African multinational telecommunications company MTN Group disclosed a data breach that exposed subscribers’ personal information. MTN Group Limited is a South African multinational telecommunications company headquartered in Johannesburg.

Data breaches

Data breaches Telecommunications Financial Services Mobile

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. The state-sponsored actor behind the attack is an Advanced Persistent Threat (APT) group known as Salt Typhoon, believed to be tied to the People’s Republic of China (PRC).

Encryption

Encryption Identity Theft Media Telecommunications

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Security Affairs

MAY 1, 2025

The financially-motivated group targeted organizations in the media, tourism, finance, insurance, manufacturing, energy, telecommunications, biotechnology and retail sectors. Hive0117 group has been active since February 2022, it is known for using DarkWatchman malware in phishing attacks across Russia, Belarus, Baltics and Kazakhstan.

Malware

Malware Phishing Telecommunications Antivirus

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

Security Affairs

FEBRUARY 13, 2025

On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware. In 2022, the Russian APT used multiple wipers in attacks aimed at Ukraine, including AwfulShred , CaddyWiper , HermeticWiper , Industroyer2 , IsaacWiper , WhisperGate , Prestige , RansomBoggs , and ZeroWipe.

Telecommunications

Telecommunications DNS Hacking Passwords

China-linked APT UNC3886 targets EoL Juniper routers

Security Affairs

MARCH 12, 2025

Its primary focus is on defense, technology, and telecommunications sectors in the US and Asia. UNC3886 is a sophisticated China-linked cyber espionage group that targets network devices and virtualization technologies using zero-day exploits.

Telecommunications

Telecommunications Malware DDOS Technology

Video: Salt Typhoon Hacks Major Telecom Giants Using Malware

eSecurity Planet

DECEMBER 4, 2024

In this video, we delve into the world of cybercrime with our feature on the Salt Typhoon incident, where hackers successfully breached major telecommunications companies. With expert commentary and in-depth analysis, this video is essential viewing for anyone interested in cybersecurity, tech news, or protecting their digital privacy.

Hacking

Hacking Malware Telecommunications Cybercrime

Scattered Spider Strikes Again: U.K. Attacks Spark U.S. Retailer Alarm

SecureWorld News

MAY 16, 2025

Google's report confirms that UNC3944 continues to "demonstrate persistence and adaptability in targeting organizations, particularly those in the retail, hospitality, and telecommunications sectors."

Retail

Retail Social Engineering Engineering Telecommunications

APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq

Security Affairs

MAY 13, 2025

The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors. Marbled Dust has been active since at least 2017 and primarily targets organizations in Europe and the Middle East.

DNS

DNS Telecommunications Architecture Authentication

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

Security Affairs

MARCH 24, 2025

China-linked APT Weaver Ant infiltrated the network of a telecommunications services provider for over four years. Sygnia attributes its activities to China based on the use of Zyxel routers operated by Southeast Asian telecommunication providers, backdoors linked to Chinese groups, and operations during GMT +8 business hours.

Telecommunications

Telecommunications Encryption Accountability Firewall

Nation-State Hackers Exploit Windows Shortcut Zero-Day Vulnerability

SecureWorld News

MARCH 20, 2025

Who is affected?

Cryptocurrency

Cryptocurrency Telecommunications Government Education

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

“Do NOT conduct CFPB work using mobile voice calls or text messages,” reads the email sent to the employees referencing a recent government statement acknowledging the telecommunications infrastructure attack.

Hacking

Hacking Internet Internet Government

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

Security Affairs

MAY 26, 2025

Targeted organizations span critical sectors including healthcare, telecommunications, aviation, municipal government, finance, and defense across Europe, North America, and the Asia-Pacific region.” .” reads the post published by EclecticIQ. “The earliest observed exploitation activity dates back to May 15, 2025.

Mobile

Mobile Telecommunications Authentication Malware

China-linked APT Salt Typhoon targets Canadian Telecom companies

Security Affairs

JUNE 24, 2025

The Salt Typhoon hacking campaign, active for 1–2 years, has targeted telecommunications providers in several dozen countries, according to a U.S. telecommunications providers by exploiting unpatched Cisco IOS XE network devices. . telecommunications firms were compromised in the attack.

Telecommunications

Telecommunications Hacking Data collection Government

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Security Affairs

MARCH 27, 2025

Arkana Security, a new ransomware group, claims to have breached the telecommunications provider WideOpenWest (WOW!). is a US-based telecommunications company that provides broadband internet, cable TV, and phone services. The new ransomware group Arkana Security claims to have hacked US telecom provider WOW!, stealing customer data.

Hacking

Hacking Telecommunications Data breaches Surveillance

Nation-state actors and cybercrime gangs abuse malicious.lnk files for espionage and data theft

Security Affairs

MARCH 18, 2025

The attacks carried out by the threat actors aimed at organizations across the government, financial, telecommunications, military, and energy sectors in North America, Europe, Asia, South America, and Australia. Since 2017, the vulnerability has been exploited by APT groups from North Korea, Iran, Russia, and China.

Cybercrime

Cybercrime Telecommunications Government Malware

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned Chinese firm Sichuan Juxinhe Network Technology Co., for its involvement in the activities of the Salt Typhoon APT group, which recently compromised multiple U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

U.S. Confirms Chinese Hackers Compromised Telecommunications Networks

Chinese Cyber Espionage Campaign Targeting U.S. Telecommunications

Trending Sources

Earth Kurma APT is actively targeting government and telecommunications orgs in Southeast Asia

Arguing Against CALEA

Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms

France’s second-largest telecoms provider Free suffered a cyber attack

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Black Basta ransomware gang hit BT Group

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

CL-STA-0969 Installs Covert Malware in Telecom Networks During 10-Month Espionage Campaign

TalkTalk confirms data breach involving a third-party platform

Google Docs and Weebly Weaponized in New Phishing Scheme

Russia warns financial sector organizations of IT service provider LANIT compromise

Germany limits police spyware use to serious crimes

China-based SMS Phishing Triad Pivots to Banks

Salt Typhoon breach: Chinese APT compromises U.S. Army National Guard network

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

News alert: Knocknoc raises seed funding to scale its just-in-time network access control technology

Storm-2372 used the device code phishing technique since August 2024

T-Mobile detected network intrusion attempts and blocked them

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Exposed eyes: 40,000 security cameras vulnerable to remote hacking

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

Thai police arrested Chinese hackers involved in SMS blaster attacks

African multinational telco giant MTN Group disclosed a data breach

Americans urged to use encrypted messaging after large, ongoing cyberattack

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

China-linked APT UNC3886 targets EoL Juniper routers

Video: Salt Typhoon Hacks Major Telecom Giants Using Malware

Scattered Spider Strikes Again: U.K. Attacks Spark U.S. Retailer Alarm

APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

Nation-State Hackers Exploit Windows Shortcut Zero-Day Vulnerability

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

China-linked APT Salt Typhoon targets Canadian Telecom companies

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Nation-state actors and cybercrime gangs abuse malicious.lnk files for espionage and data theft

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Stay Connected