Nation-State Attacker of Telecommunications Networks

Schneier on Security

CrowdStrike Intelligence assesses that LightBasin is a targeted intrusion actor that will continue to target the telecommunications sector.

Risks in Telecommunications IT

Trend Micro

We summarize the characteristics, threats, and recommendations to improve the security posture of enterprises' and telecommunications companies' IT infrastructure.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

DeadRinger: Chinese APTs strike major telecommunications companies

Zero Day

Previously unknown campaigns center around "Chinese state interests

McAfee uncovers espionage campaign aimed at major telecommunication companies

Tech Republic Security

The security company said the attacks were attributed to RedDelta and Mustang Panda, both of which are allegedly based in China

Telecommunications Providers Worldwide Are Targeted in Sophisticated Cyber-Espionage Campaign

Dark Reading

LightBasin has displayed in-depth knowledge of telecom architectures and protocols in its attacks, security vendor warns

Aerospace, Telecommunications Companies Victims of Stealthy Iranian Cyber-Espionage Campaign

Dark Reading

Since at least 2018, "MalKamak" group has targeted firms in the Middle East, Russia, and other areas to steal sensitive data, security vendor says

Southeast Asian Telecommunications Firms Targeted by APT Attacks

Heimadal Security

The malicious campaigns were targeting networks belonging to major telecommunications companies from Southeast Asia. The post Southeast Asian Telecommunications Firms Targeted by APT Attacks appeared first on Heimdal Security Blog. Three cyber espionage campaigns have been discovered.

China-linked APT41 group targets telecommunications companies with new backdoor

Security Affairs

China-linked APT41 group is targeting telecommunications companies with a new piece of malware used to spy on text messages of highly targeted individuals. The experts found the MessageTap backdoor installed on a Linux-based Short Message Service Center (SMSC) server belonging to an unnamed telecommunications company. “Named MESSAGETAP, the tool was deployed by APT41 in a telecommunications network provider in support of Chinese espionage efforts.”

CPDP 2021 – Moderator: Rob Van Eijk ‘Technical Standards Bringing Together Data Protection With Telecommunications Regulation, Digital Regulations And Procurement’

Security Boulevard

The post CPDP 2021 – Moderator: Rob Van Eijk ‘Technical Standards Bringing Together Data Protection With Telecommunications Regulation, Digital Regulations And Procurement’ appeared first on Security Boulevard. Speakers: Paul F. Nemitz,Mikuláš Peksa, Amelia Andersdotter, Clara Neppel, Francesca Bria, Our sincere thanks to CPDP 2021 - Computers, Privacy & Data Protection Conference for publishing their well-crafted videos on the organization's YouTube channel. Enjoy!

MWC19 Los Angeles: The value of blockchain in the telecommunications sector

Tech Republic Security

Here's how the telecommunications sector can benefit Blockchain isn't reserved for bitcoin.

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

Krebs on Security

An analysis of the malicious file and other submissions by the same VirusTotal user suggest the account that initially flagged the backdoor as suspicious belongs to IT personnel at the National Telecommunications and Information Administration (NTIA), a division of the U.S. On Aug.

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

A China-linked hacking group, tracked as LightBasin (aka UNC1945 ), hacked mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies.

Huawei CFO, US DoJ Reach Deferred Prosecution Agreement

Security Boulevard

Cyberlaw Cybersecurity Featured Governance, Risk & Compliance Security Boulevard (Original) Spotlight china Huawei Iran sanctions Skycom Tech telecommunications

New law will issue bans, fines for using default passwords on smart devices

Malwarebytes

To help address this cybersecurity and privacy problem, the UK government will soon roll out the Product Security and Telecommunications Infrastructure (PSTI) Bill that bans the use of default passwords for all internet-connected devices for the home, which we all call the Internet of Things (IoT).

Operation GhostShell: Novel RAT Targets Global Aerospace and Telecoms Firms

Security Boulevard

In July 2021, the Cybereason Nocturnus and Incident Response Teams responded to Operation GhostShell , a highly-targeted cyber espionage campaign targeting the Aerospace and Telecommunications industries mainly in the Middle East, with additional victims in the U.S.,

Govware Conference: Cybereason CEO Lior Div to Deliver Keynote

Security Boulevard

His talk will focus on the rise in cyber attacks against global telecommunications companies. Security Bloggers Network Threats & Breaches Advanced persistent threat APT china cyberattack DeadRinger Espionage Govware conference Lior Div Sam Curry telecommunications telecoms

CSO 52

T-Mobile Data Breach Amplifies Larger Cybersecurity Challenge

Security Boulevard

Data Security Mobile Security Security Bloggers Network Threats & Breaches Critical Infrastructure cyberattack Data breaches enterprise security personally identifiable information pii Privacy Security Controls T-Mobile telecommunications telecoms

Spotlight Podcast: How DU Telecom Manages Digital Transformation Risk

The Security Ledger

One of the industries feeling the weight of these changes is telecommunications, where profitable legacy businesses like fixed line telephony and text messaging are falling victim to technology fueled changes.

Cybersecurity Risks of 5G – And How to Control Them

eSecurity Planet

The National Telecommunications and Information Administration (NTIA) released its National Strategy to Secure 5G implementation plan starting in January. Mobile Threats Trends 4g 5G cybersecurity DDOS IoT Slicing telecommunications wireless network

DeadRinger: Exposing Chinese Threat Actors Targeting Major Telcos

Security Boulevard

In the beginning of 2021, the Cybereason Nocturnus Team investigated clusters of intrusions detected targeting the telecommunications industry across Southeast Asia. Security Bloggers Network APT china Nation-state Attack national security research ResearchCat telecommunications

Malicious Life Podcast: DeadRinger – Exposing Chinese APTs Targeting Major Telcos

Security Boulevard

Cybereason recently discovered several previously unidentified attack campaigns targeting the telecoms industry across Southeast Asia that are assessed to be the work of multiple Chinese APT groups.

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

Security Boulevard

An analysis of the malicious file and other submissions by the same VirusTotal user suggest the account that initially flagged the backdoor as suspicious belongs to IT personnel at the National Telecommunications and Information Administration (NTIA), a division of the U.S. On Aug.

Firm Uncovers Major Cyber-Espionage Campaign Against Telcos

The Security Ledger

The security firm Cybereason has uncovered a persistent cyber espionage attack on telecommunications companies worldwide to steal data on high-profile users and then spy on them. APT Business China critical infrastructure data breach Hacks & Hackers Telecommunications Threats Top Stories cyber espionage cyber warfare cyberattacks cybercrime cybersecurity hacking state sponsored telecommunications

Telecom operators targeted in recent espionage hacking campaign

Bleeping Computer

Researchers have spotted a new espionage campaign targeting telecommunication and IT service providers in the Middle East and Asia. [.]. Security

Gallium: The Newest Threat Group on Microsoft's Radar

Dark Reading

Hacking group has been targeting telecommunication providers

Criminals were inside Syniverse for 5 years before anyone noticed

Malwarebytes

Malwarebytes news America Movil AT&T China Mobile Karsten Nohl Syniverse T-Mobile telecomms telecommunications telefonica Verizon Vodafone

FCC wants new data breach reporting rules for telecom carriers

Bleeping Computer

The Federal Communications Commission (FCC) has proposed more rigorous data breach reporting requirements for telecom carriers in response to breaches that recently hit the telecommunications industry. [.].

New House Bill Aims to Drive Americans' Security Awareness

Dark Reading

The legislation requires the National Telecommunications and Information Administration to establish a cybersecurity literacy campaign

US bans China Telecom Americas over national security risks

Bleeping Computer

The Federal Communications Commission (FCC) has revoked China Telecom Americas' license to provide telecommunication services within the United States. [.].

Insecure Database Exposes Millions of Private SMS Messages

Threatpost

Breach Cloud Security Privacy data breach Data Privacy Database Security hosted services Microsoft Microsoft Azure Oracle Security small businesses SMS messages telecommunications TrueDialog vpnMentor

The European Space Agency Launches Hackable Satellite

Schneier on Security

Of course this is hackable: A sophisticated telecommunications satellite that can be completely repurposed while in space has launched. […]. Because the satellite can be reprogrammed in orbit, it can respond to changing demands during its lifetime. […].

Iranian state hackers use upgraded malware in attacks on ISPs, telcos

Bleeping Computer

The Iranian state-supported APT known as 'Lyceum' (Hexane, Spilrin) targeted ISPs and telecommunication service providers in the Middle East and Africa between July and October 2021. [.].

LightBasin hacking group breaches 13 global telecoms in two years

Bleeping Computer

A group of hackers that security researchers call LightBasin has been compromising mobile telecommunication systems across the world for the past five years. [.].

State-backed hackers breach telcos with custom malware

Bleeping Computer

A previously unknown state-sponsored actor is deploying a novel toolset in attacks targeting telecommunication providers and IT firms in South Asia. [.].

Singapore ISP Leaves 1,000 Routers Open to Attack

Threatpost

IoT Vulnerabilities Web Security Ankit Anubhav Mirai router vulnerability Singapore Telecommunications Limited SingCERT SingTel Wifi Gigabit RoutersTelcom firm leaves port open on customer routers after maintenance update exposing hundreds of customers to possible attack.

Telcos Become Richer Hacking Targets

Dark Reading

The shift of moving telecommunications networks toward more commercial networking equipment and systems also expanded their attack surface

Russia bans Opera VPN and VyprVPN, classifies them as threats

Bleeping Computer

Roskomnadzor, Russia's telecommunications watchdog, has banned the use of Opera VPN and VyprVPN after classifying them as threats according to current Russian law. [.].

Germany to force ISPs to give discounts for slow Internet speeds

Bleeping Computer

A new regulation coming in the form of an amendment in the Telecommunications Act of Germany could radically change the relationship between consumers and internet service providers. [.].

Chinese Hackers Target Major Southeast Asian Telecom Companies

The Hacker News

Three distinct clusters of malicious activities operating on behalf of Chinese state interests have staged a series of attacks to target networks belonging to at least five major telecommunications companies located in Southeast Asian countries since 2017.

T-Mobile discloses data breach after SIM swapping attacks

Bleeping Computer

American telecommunications provider T-Mobile has disclosed a data breach after an unknown number of customers were apparently affected by SIM swap attacks. [.].

‘DeadRinger’ Reveals Pervasive Cyber Espionage Campaign

Security Boulevard

In the summer of 2019, our researchers discovered a massive malicious campaign against telecommunications providers that we dubbed Operation Soft Cell. This week, our researchers revealed details of more pervasive attacks against telecommunications providers.

South Korean telco KT suffers nationwide outage after routing error

Bleeping Computer

The second-largest telecommunications provider in South Korea, KT Corporation, has suffered a nationwide outage today, leaving all its 16.5 million customers without internet connectivity and telephony services for about 40 minutes. [.]. Technology

Largest mobile SMS routing firm discloses five-year-long breach

Bleeping Computer

Syniverse, a service provider for most telecommunications companies, disclosed that hackers had access to its databases over the past five years and compromised login credentials belonging to hundreds of customers. [.].