Accountability, Passwords and Telecommunications

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

is a French telecommunications company, subsidiary of Iliad S.A. that provides voice, video, data, and Internet telecommunications to consumers in France. “No passwords” , “no bank cards” , “no content of communications (emails, SMS, voice messages, etc.)” Free S.A.S. million IBAN details.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

Can We Stop Pretending SMS Is Secure Now?

Krebs on Security

MARCH 16, 2021

Lucky225 showed how anyone could do the same after creating an account at a service called Sakari , a company that helps celebrities and businesses do SMS marketing and mass messaging. From there, the attacker can reset the password of any account which uses that phone number for password reset links.

Telecommunications

Telecommunications Mobile Accountability Wireless

U.K. Arrest in ‘SMS Bandits’ Phishing Service

Krebs on Security

FEBRUARY 1, 2021

The service, marketed in the underground under the name “ SMS Bandits ,” has been responsible for blasting out huge volumes of phishing lures spoofing everything from COVID-19 pandemic relief efforts to PayPal, telecommunications providers and tax revenue agencies. ” SMS Bandits offered an SMS phishing (a.k.a.

Phishing

Phishing Telecommunications Advertising Mobile

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA).

Telecommunications

Telecommunications Authentication Data collection Passwords

Hackers Were Inside Citrix for Five Months

Krebs on Security

FEBRUARY 19, 2020

The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords. How would your organization hold up to a password spraying attack? As the Citrix hack shows, if you don’t know you should probably check, and then act on the results accordingly.

VPN

VPN Passwords Software Telecommunications

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

The attackers employ a phishing technique called device code phishing, which tricks users into logging into productivity apps while capturing login tokens that can be used to take over compromised accounts. ” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. .

Phishing

Phishing Authentication Telecommunications Accountability

Why & Where You Should You Plant Your Flag

Krebs on Security

AUGUST 12, 2020

Several stories here have highlighted the importance of creating accounts online tied to your various identity, financial and communications services before identity thieves do it for you. ” In short, although you may not be required to create online accounts to manage your affairs at your ISP, the U.S. .”

Accountability

Accountability Mobile Banking Passwords

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Krebs on Security

MARCH 20, 2023

Image: Shutterstock Telecommunications giant AT&T disclosed this month that a breach at a marketing vendor exposed certain account information for nine million customers. AT&T’s disclosure said the information exposed included customer first name, wireless account number, wireless phone number and email address.

Mobile

Mobile Wireless Advertising Telecommunications

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Security Affairs

MARCH 27, 2025

Arkana Security, a new ransomware group, claims to have breached the telecommunications provider WideOpenWest (WOW!). is a US-based telecommunications company that provides broadband internet, cable TV, and phone services. million accounts. The new ransomware group Arkana Security claims to have hacked US telecom provider WOW!,

Hacking

Hacking Telecommunications Data breaches Internet

Privacy Roundup: Week 12 of Year 2025

Security Boulevard

MARCH 24, 2025

While MFA is primarily a security feature, its primary privacy benefit is adding another layer of security to prevent unauthorized access to information contained in particular important or sensitive accounts. Specifically, it was fetching account icons and defaulted to opening password reset pages over HTTP.

Surveillance

Surveillance Telecommunications Data breaches Malware

Why CISA is Warning CISOs About a Breach at Sisense

Krebs on Security

APRIL 11, 2024

New York City based Sisense has more than 1,000 customers across a range of industry verticals, including financial services, telecommunications, healthcare and higher education. ” “We are taking this matter seriously and promptly commenced an investigation,” Dash continued.

CISO

CISO Encryption Telecommunications Financial Services

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

Security Affairs

MARCH 24, 2025

China-linked APT Weaver Ant infiltrated the network of a telecommunications services provider for over four years. During a forensic investigation, Sygnia researchers observed multiple alerts that revealed a re-enabled threat actor account by a service account from an unidentified server.

Telecommunications

Telecommunications Encryption Accountability Firewall

Microsoft Uses Trademark Law to Disrupt Trickbot Botnet

Krebs on Security

OCTOBER 12, 2020

“We disrupted Trickbot through a court order we obtained as well as technical action we executed in partnership with telecommunications providers around the world,” wrote Tom Burt , corporate vice president of customer security and trust at Microsoft, in a blog post this morning about the legal maneuver. Image: Microsoft.

Healthcare

Healthcare Ransomware Internet Internet

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

Security Affairs

DECEMBER 30, 2020

T-Mobile has disclosed a data breach exposing customers’ account’s information. “We are reaching out to let you know about a security incident we recently identified and quickly shut down that may have impacted some of your T-Mobile account information.” ” reads the statement published by the company.

Data breaches

Data breaches Mobile Telecommunications Wireless

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

The Russian government, military, and intelligence service may wish to achieve some operational effect, for example, disrupting the power grid or interfering with telecommunications infrastructure, which may be part of a larger war plan. Accounting for humans. Each of these organizations performs cyber operations for various reasons.

Cybersecurity

Cybersecurity Cybercrime Education Government

T-Mobile customers were hit with SIM swapping attacks

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks.

Mobile

Mobile Data breaches Telecommunications Identity Theft

Hackers accessed Mint Mobile subscribers’ data and ported some numbers

Security Affairs

JULY 10, 2021

Mint Mobile discloses a data breach, an unauthorized attacker gained access to subscribers’ account information and ported phone numbers. Mint Mobile is an American telecommunications company which sells mobile phone services and operates as an MVNO on T-Mobile’s cellular network in the United States.

Mobile

Mobile Data breaches Telecommunications Passwords

Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation

Digital Shadows

MARCH 17, 2025

For businesses, this means their compromised access can be resold multiple times, leaving them vulnerable to repeated attacks from different threat actors if passwords arent changed promptly. This plaintext file often contains usernames and passwords, giving attackers immediate access to credentialsno advanced tools or expertise needed.

VPN

VPN Authentication Ransomware Risk

Plant Your Flag, Mark Your Territory

Krebs on Security

JUNE 28, 2018

Many people, particularly older folks, proudly declare they avoid using the Web to manage various accounts tied to their personal and financial data — including everything from utilities and mobile phones to retirement benefits and online banking services. Postal Service or the Social Security Administration.

Banking

Banking Accountability Mobile Media

T-Mobile suffered a new data breach, 37 million accounts have been compromised

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts. ” reads the press release published by the company.

Data breaches

Data breaches Mobile Accountability Telecommunications

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Security Affairs

MARCH 23, 2022

Microsoft has now confirmed that the attackers have compromised the account of one of its employees gaining limited access to source code repositories. Our investigation has found a single account had been compromised, granting limited access. No customer code or data was involved in the observed activities. Pierluigi Paganini.

Accountability

Accountability VPN Social Engineering Hacking

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me. A single bitcoin is trading at around $45,000. ” SEPTEMBER. Uber blames LAPSUS$ for the intrusion.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

230K individuals impacted by a data breach suffered by Telco provider Tangerine

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches

Data breaches Telecommunications Banking Mobile

Aussie Telcos are Failing at Some Fundamental Security Basics

Troy Hunt

MARCH 27, 2018

It began with a visit to the local Telstra store earlier this month to upgrade a couple of phone plans which resulted in me sitting alone by this screen whilst the Telstra staffer disappeared into the back room for a few minutes: Is it normal for @Telstra to display customer passwords on publicly facing terminals in their stores?

Passwords

Passwords Banking Mobile Telecommunications

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

According to interviews with several sources, this hybrid phishing gang has a remarkably high success rate, and operates primarily through paid requests or “bounties,” where customers seeking access to specific companies or accounts can hire them to target employees working remotely at home.

Phishing

Phishing VPN Social Engineering Media

T-Mobile discloses data breach affecting prepaid wireless customers

Security Affairs

NOVEMBER 22, 2019

The US branch of the telecommunications giant T -Mobile disclosed a security breach that according to the company impacted a small number of customers of its prepaid service. The cybersecurity team at T-Mobile discovered an unauthorized access to information associated with a limited number of its prepaid wireless account customers.

Wireless

Wireless Data breaches Mobile Telecommunications

It Might Be Our Data, But It’s Not Our Breach

Krebs on Security

AUGUST 11, 2022

The telecommunications giant stopped short of saying the data wasn’t theirs, but it maintains the records do not appear to have come from its systems and may be tied to a previous data incident at another company. There are no passwords in the database. The largest item in the archive is a 3.6 million records, including 22.8

Mobile

Mobile Internet Internet Accountability

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

In each incident, the intruders have left behind a “web shell,” an easy-to-use, password-protected hacking tool that can be accessed over the Internet from any browser. By all accounts, rooting out these intruders is going to require an unprecedented and urgent nationwide clean-up effort.

Hacking

Hacking Software Government Internet

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors; Over the years, the group enhanced its evasion capabilities. Enable 2FA on all externally exposed accounts.

Media

Media Accountability Telecommunications Government

Aerial Direct, the O2’s largest UK partner suffered a data breach

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.” Pierluigi Paganini.

Data breaches

Data breaches Telecommunications Passwords Advertising

Store manager admits SIM swapping his customers

Malwarebytes

MARCH 19, 2024

A 42-year-old manager at an unnamed telecommunications company has admitted SIM swapping customers at his store. Armed with an email and password—which are easily bought online— and the 2FA code, an attacker could take over the victim’s online accounts. Katz pleaded guilty before Chief U.S.

Social Engineering

Social Engineering Computers and Electronics Mobile Identity Theft

Hacker Charged With Extorting Online Psychotherapy Service

Krebs on Security

NOVEMBER 3, 2022

A Twitter account by that name was verified by Kivimaki’s attorney as his, and through that account he denied being involved in the Vastaamo extortion. Kivimaki stopped using his middle name Julius in favor of his given first name Aleksanteri when he moved abroad several years ago. ”

Data breaches

Data breaches Cybercrime Telecommunications Accountability

AT&T confirms 73 million people affected by data breach

Malwarebytes

APRIL 2, 2024

Telecommunications giant AT&T has finally confirmed that 73 million current and former customers have been caught up in a massive dark web data leak. million current AT&T account holders and approximately 65.4 million former account holders. Change your password. We are reaching out to all 7.6M Take your time.

Data breaches

Data breaches Passwords Phishing Accountability

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

China-linked threat actors have breached telecommunications companies and network service providers to spy on the traffic and steal data. US NSA, CISA, and the FBI published a joint cybersecurity advisory to warn that China-linked threat actors have breached telecommunications companies and network service providers.

Telecommunications

Telecommunications Authentication Passwords Accountability

Security Affairs newsletter Round 500 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

Cybercrime Firewall Social Engineering Ransomware

Hundreds of network operators’ credentials found circulating in Dark Web

Security Affairs

JANUARY 30, 2024

As an example of compromised accounts, Resecurity outlined exposed access credentials belonging to a major data center and one of the largest vendors providing international-scale network telephony connectivity to governmental and national telecom providers in Africa.

Engineering

Engineering Passwords Telecommunications Accountability

21 Million stolen credentials from Fortune 500 companies available on the dark web

Security Affairs

OCTOBER 31, 2019

. “As many as 95% of the credentials contained unencrypted, or bruteforced and cracked by the attackers, plaintext passwords.” ” The following table shows stolen credentials per industry: Most of the login credentials (95%) include plaintext passwords, 76% of them were compromised during the last 12 months.

Passwords

Passwords Telecommunications Advertising Retail

AT&T is notifying millions of customers of data breach after a third-party vendor hack

Security Affairs

MARCH 10, 2023

CPNI is information related to the telecommunications services purchased by the customers, including the number of lines for each account or the wireless plan to which customers are subscribed. Social Security Number, account passwords). ” Exposed data don’t include financial information (i.e.

Data breaches

Data breaches Hacking Wireless Telecommunications

T-Mobile data breach has impacted 48.6 million customers

Security Affairs

AUGUST 18, 2021

million current postpaid customer accounts, as well as more than 40 million records of former and prospective customers. Importantly, no phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers.” Pierluigi Paganini.

Data breaches

Data breaches Mobile Telecommunications Accountability

Lyceum APT made the headlines with attacks in Middle East

Security Affairs

AUGUST 27, 2019

reported that Hexane is targeting organizations in the oil and gas industry and telecommunication providers. Lyceum was observed using password spraying and brute-force attacks to compromise email accounts of targeted individuals. Security experts at Dragos Inc. ” reads the report published by SecureWork.

DNS

DNS Passwords Penetration Testing Social Engineering

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile

Mobile Cryptocurrency Accountability Passwords

Seedworm APT Group targeted more than 130 victims in 30 organizations since Sept

Security Affairs

DECEMBER 11, 2018

Most of the targets were in the telecommunications and IT services sectors. Experts believe that the Seedworm APT is focused on telecommunications and IT services because they are interested in gaining access to customers of those firms. Changing Tools and Techniques. ” continues the analysis.

Telecommunications

Telecommunications Passwords Advertising Media

Nobelium continues to target organizations worldwide with custom malware

Security Affairs

DECEMBER 6, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. The Nobelium cyberspies is using a new custom downloader tracked by the researchers as CEELOADER.

Malware

Malware VPN Accountability Telecommunications

Scattered Spider x RansomHub: A New Partnership

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Scattered Spider previously targeted telecommunications firms, likely to support its SIM-swapping activities that facilitate account takeovers.

Social Engineering

Social Engineering Engineering Accountability Backups

France’s second-largest telecoms provider Free suffered a cyber attack

Can We Stop Pretending SMS Is Secure Now?

Trending Sources

U.K. Arrest in ‘SMS Bandits’ Phishing Service

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Hackers Were Inside Citrix for Five Months

Storm-2372 used the device code phishing technique since August 2024

Why & Where You Should You Plant Your Flag

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Privacy Roundup: Week 12 of Year 2025

Why CISA is Warning CISOs About a Breach at Sisense

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

Microsoft Uses Trademark Law to Disrupt Trickbot Botnet

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

T-Mobile customers were hit with SIM swapping attacks

Hackers accessed Mint Mobile subscribers’ data and ported some numbers

Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation

Plant Your Flag, Mark Your Territory

T-Mobile suffered a new data breach, 37 million accounts have been compromised

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Happy 13th Birthday, KrebsOnSecurity!

230K individuals impacted by a data breach suffered by Telco provider Tangerine

Aussie Telcos are Failing at Some Fundamental Security Basics

Voice Phishers Targeting Corporate VPNs

T-Mobile discloses data breach affecting prepaid wireless customers

It Might Be Our Data, But It’s Not Our Breach

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Aerial Direct, the O2’s largest UK partner suffered a data breach

Store manager admits SIM swapping his customers

Hacker Charged With Extorting Online Psychotherapy Service

AT&T confirms 73 million people affected by data breach

China-linked threat actors have breached telcos and network service providers

Security Affairs newsletter Round 500 by Pierluigi Paganini – INTERNATIONAL EDITION

Hundreds of network operators’ credentials found circulating in Dark Web

21 Million stolen credentials from Fortune 500 companies available on the dark web

AT&T is notifying millions of customers of data breach after a third-party vendor hack

T-Mobile data breach has impacted 48.6 million customers

Lyceum APT made the headlines with attacks in Middle East

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Seedworm APT Group targeted more than 130 victims in 30 organizations since Sept

Nobelium continues to target organizations worldwide with custom malware

Scattered Spider x RansomHub: A New Partnership

Stay Connected