article thumbnail

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

is a French telecommunications company, subsidiary of Iliad S.A. that provides voice, video, data, and Internet telecommunications to consumers in France. The seller listed two databases for sale one containing 19,192,948 customer accounts and another including 5.11 Free S.A.S. million mobile and fixed subscribers. .

article thumbnail

Can We Stop Pretending SMS Is Secure Now?

Krebs on Security

Lucky225 showed how anyone could do the same after creating an account at a service called Sakari , a company that helps celebrities and businesses do SMS marketing and mass messaging. From there, the attacker can reset the password of any account which uses that phone number for password reset links. .”

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA).

article thumbnail

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

“The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” The Chinese APT focuses on government entities and telecommunications companies in Southeast Asia.

Mobile 112
article thumbnail

U.K. Arrest in ‘SMS Bandits’ Phishing Service

Krebs on Security

The service, marketed in the underground under the name “ SMS Bandits ,” has been responsible for blasting out huge volumes of phishing lures spoofing everything from COVID-19 pandemic relief efforts to PayPal, telecommunications providers and tax revenue agencies. ” SMS Bandits offered an SMS phishing (a.k.a.

Phishing 357
article thumbnail

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

The attackers employ a phishing technique called device code phishing, which tricks users into logging into productivity apps while capturing login tokens that can be used to take over compromised accounts. ” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. .

Phishing 113
article thumbnail

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. Protect your social media accounts by using Malwarebytes Identity Theft Protection.