Hacking, Internet and Telecommunications

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. Do NOT conduct CFPB work using mobile voice calls or text messages,” reads the email sent to the employees referencing a recent government statement acknowledging the telecommunications infrastructure attack.

Hacking

Hacking Internet Internet Government

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. is a French telecommunications company, subsidiary of Iliad S.A. that provides voice, video, data, and Internet telecommunications to consumers in France. Free S.A.S.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

Cell Networks Hacked by (Probable) Nation-State Attackers

Schneier on Security

JULY 9, 2019

The researchers found the hackers got into one of the cell networks by exploiting a vulnerability on an internet-connected web server to gain a foothold onto the provider's internal network. The attack was aiming to obtain CDR records of a large telecommunications provider.

Hacking

Hacking Telecommunications Malware Passwords

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. The Chinese APT focuses on government entities and telecommunications companies in Southeast Asia.

Mobile

Mobile Telecommunications Data breaches Hacking

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. According to public sources, the threat actors targeted ICS of at least 11 Ukrainian telecommunications providers leading to the disruption of their services. ” reads the advisory.

Telecommunications

Telecommunications Authentication Data collection Passwords

Massive DDoS attack brought down 25% Iranian Internet connectivity

Security Affairs

FEBRUARY 9, 2020

Iran comes under cyber-attack again, a massive offensive brought down a large portion of the Iranian access to the Internet. Iran infrastructures are under attack, a massive cyberattack brought down a large portion of the Iranian access to the Internet, according to the experts the national connectivity fell to 75%.

DDOS

DDOS Internet Internet Telecommunications

FBI Shuts Down Chinese Botnet

Schneier on Security

SEPTEMBER 19, 2024

The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types of internet-connected devices around the world, including home routers, cameras, digital video recorders, and NAS drives.

Telecommunications

Telecommunications Media Malware Internet

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. for its involvement in the activities of the Salt Typhoon APT group, which recently compromised multiple U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI. law enforcement requests pursuant to court orders.

Government

Government Telecommunications Surveillance Risk

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

Security Affairs

OCTOBER 29, 2023

IT Army of Ukraine hacktivists have temporarily disrupted internet services in some of the territories that have been occupied by Russia. Ukrainian hacktivists belonging to the IT Army of Ukraine group have temporarily disabled internet services in some of the territories that have been occupied by the Russian army.

Internet

Internet Internet Telecommunications DDOS

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

“Like the entire telecommunications industry, T-Mobile has been closely monitoring ongoing reports about a series of highly coordinated cyberattacks by bad actors known as “Salt Typhoon” that are reported to be linked to Chinese state-sponsored operations. ” reads the report published by the telecommunications company.

Mobile

Mobile Telecommunications Government Internet

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI. law enforcement requests pursuant to court orders.

Government

Government Telecommunications Surveillance Risk

US Cyber Command and Microsoft Are Both Disrupting TrickBot

Schneier on Security

OCTOBER 15, 2020

The crooks running the Trickbot botnet typically use these config files to pass new instructions to their fleet of infected PCs, such as the Internet address where hacked systems should download new updates to the malware. To execute this action, Microsoft formed an international group of industry and telecommunications providers.

Telecommunications

Telecommunications Internet Internet Malware

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. During transit the message remains encrypted the entire time it is moving across the internet. What that means is only the person sending it and the person receiving it can read it.

Encryption

Encryption Identity Theft Media Telecommunications

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. for its involvement in the activities of the Salt Typhoon APT group, which recently compromised multiple U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

China-linked hackers target telecommunication providers in the Middle East

Security Affairs

MARCH 24, 2023

Researchers reported that China-linked hackers targeted telecommunication providers in the Middle East in the first quarter of 2023. In the first quarter of 2023, SentinelLabs researchers spotted the initial phases of attacks against telecommunication providers in the Middle East. ” reads the report published by SentinelLabs.

Telecommunications

Telecommunications Malware Mobile Internet

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

Security Affairs

SEPTEMBER 5, 2021

A massive DDoS hit New Zealand ‘s third-largest internet operator isolating parts of the country from the Internet. A massive DDoS hit Vocus ISP, New Zealand ‘s third-largest internet operator, isolating parts of the country from the Internet. SecurityAffairs – hacking, DDoS). Pierluigi Paganini.

DDOS

DDOS Internet Internet Telecommunications

SFO discloses data breach following the hack of 2 of its websites

Security Affairs

APRIL 11, 2020

San Francisco International Airport (SFO) disclosed a data breach, its websites SFOConnect.com and SFOConstruction.com were hacked last month. The SFO ITT urges anyone who even visited either website using the Internet Explorer web browser to change the device’s password. SecurityAffairs – hacking, data breach).

Data breaches

Data breaches Hacking Telecommunications Advertising

China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet

Internet Internet DNS Telecommunications

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

OCTOBER 20, 2021

China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019. ” reads the report published by Crowdstrike.

Telecommunications

Telecommunications Mobile Hacking Architecture

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

Security Affairs

FEBRUARY 13, 2025

On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware. “ Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Russia)

Telecommunications

Telecommunications DNS Passwords Hacking

ICANN warns of large-scale attacks on Internet infrastructure

Security Affairs

FEBRUARY 24, 2019

Large-scale attacks are threatening the global Internet infrastructure, the alarm was launched by the Internet Corporation for Assigned Names and Numbers (ICANN). After an emergency meeting, the Internet Corporation for Assigned Names and Numbers (ICANN) confirmed that the global Internet infrastructure is facing large-scale attacks.

Internet

Internet Internet DNS Telecommunications

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

Security Affairs

AUGUST 10, 2020

In March 2020, The Ministry of Telecommunications (MoTC) issued a directive to all operators in Myanmar with a secret list of 230 sites to be blocked due to the nature of the content; adult content and fake news. There are several aspects of the Internet blocking in Myanmar that raise questions. Circumvention of Internet blocking.

Internet

Internet Internet Telecommunications DNS

Salt Typhoon Expands Espionage Campaign, Targets Cisco Routers

SecureWorld News

FEBRUARY 19, 2025

telecommunications providers , including AT&T, Verizon, and Lumen Technologies. internet service provider, a U.K.-affiliated Limit exposure : Disable unnecessary web UI access and restrict administrative interfaces from internet exposure. The impacted companies include a U.S. Despite significant media coverage and U.S.

Telecommunications

Telecommunications Internet Internet Technology

Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers

The Hacker News

APRIL 13, 2022

The Chinese-backed Hafnium hacking group has been linked to a piece of a new malware that's used to maintain persistence on compromised Windows environments.

Malware

Malware Telecommunications Internet Internet

New hacking group ‘Metador’ lurking in ISP networks for months

Bleeping Computer

SEPTEMBER 25, 2022

A previously unknown threat actor that researchers have named 'Metador' has been breaching telecommunications, internet services providers (ISPs), and universities for about two years. [.].

Telecommunications

Telecommunications Hacking Internet Internet

China-linked APT UNC3886 targets EoL Juniper routers

Security Affairs

MARCH 12, 2025

Its primary focus is on defense, technology, and telecommunications sectors in the US and Asia. While UNC3886 previously focused their operations on network edge devices, this activity demonstrated theyre also targeting internal networking infrastructure, such as Internet Service Provider (ISP) routers.

Telecommunications

Telecommunications Malware DDOS Technology

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

Like the United States, China is more likely to try to get data from the US communications infrastructure, or from the large Internet companies that already collect data on our every move as part of their business model. If there's any lesson from all of this, it's that everybody spies using the Internet. The United States does it.

Surveillance

Surveillance Wireless Government Internet

Metador, a never-before-seen APT targeted ISPs and telco for about 2 years

Security Affairs

SEPTEMBER 26, 2022

A previously undetected hacking group, tracked as Metador, has been targeting telecommunications, internet services providers (ISPs), and universities for about two years. SecurityAffairs – hacking, APT). The complete analysis is available here: [link]. Follow me on Twitter: @securityaffairs and Facebook.

Telecommunications

Telecommunications Authentication Malware Internet

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Security Affairs

MARCH 28, 2022

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure. On March 29, 2022, a massive cyber attack caused a major internet disruption across Ukraine on national provider Ukrtelecom. SecurityAffairs – hacking, Ukraine). Pierluigi Paganini.

Internet

Internet Internet Mobile Cyber Attacks

Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate

Security Affairs

JANUARY 2, 2022

The attack did not impact radio and cable TV broadcasts, while SIC’s internet streaming transmission was interrupted. The gang also targeted the South American telecommunication providers Claro and Embratel. SecurityAffairs – hacking, Lapsus$ ransomware). Source TheRecord. Follow me on Twitter: @securityaffairs and Facebook.

Media

Media Ransomware Telecommunications Accountability

AT&T confirmed that a data breach impacted 73 million customers

Security Affairs

MARCH 30, 2024

ShinyHunters is a popular hacking crew that is known to have offered for sale data stolen from tens of major organizations, including Tokopedia , Homechef , Chatbooks.com , Microsoft , and Minted. ” reads a statement published by the telecommunication giant.

Data breaches

Data breaches Telecommunications Cybercrime Hacking

NCSC: New UK law bans default passwords on smart devices

Security Affairs

APRIL 30, 2024

The law, known as the Product Security and Telecommunications Infrastructure act (or PSTI act), will be effective on April 29, 2024. Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, smart device manufacturers) ” reads the announcement published by NCSC.

Passwords

Passwords Manufacturing Telecommunications Cyber Attacks

New law will issue bans, fines for using default passwords on smart devices

Malwarebytes

NOVEMBER 25, 2021

The idea of connecting your entire home to the internet was once a mind-blowing concept. the UK’s leading consumer awareness and review site, say that smart devices could be exposed to over 12,000 hacking and unknown scanning attacks in a single week. Thanks to smart devices, that concept is now a reality.

Passwords

Passwords Telecommunications Internet Internet

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

The number of internet-facing cameras in the world is growing exponentially. Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. New research by Cybernews shows an exponential rise in the uptake of internet-facing cameras. Surge in internet-facing cameras. Most insecure brands.

Surveillance

Surveillance Manufacturing Internet Passwords

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

Security Affairs

JULY 19, 2021

Threat actors that goes online with the moniker ZeroX claim to have stolen 1 TB of sensitive data from the Saudi Arabian petroleum and natural gas giant end it is offering for sale it on multiple hacking forums. SecurityAffairs – hacking, Saudi Aramco). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Engineering

Engineering Data breaches Telecommunications Wireless

ShroudedSnooper threat actors target telecom companies in the Middle East

Security Affairs

SEPTEMBER 19, 2023

ShroudedSnooper threat actors are targeting telecommunication service providers in the Middle East with a backdoor called HTTPSnoop. Cisco Talos researchers recently discovered a new stealthy implant dubbed HTTPSnoop that was employed in attacks against telecommunications providers in the Middle East. ” continues the report.

Telecommunications

Telecommunications Internet Internet Malware

AT&T states that the data breach impacted 51 million former and current customers

Security Affairs

APRIL 10, 2024

ShinyHunters is a popular hacking crew that is known to have offered for sale data stolen from tens of major organizations, including Tokopedia , Homechef , Chatbooks.com , Microsoft , and Minted. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, data breach)

Data breaches

Data breaches Telecommunications Identity Theft Hacking

BackdoorDiplomacy APT targets diplomats from Africa and the Middle East

Security Affairs

JUNE 13, 2021

The group also targeted a smaller subset of telecommunications firms in Africa and at least one charity organization in the Middle East. The attack chain starts with exploits for vulnerable internet-exposed systems such as web servers and management interfaces for networking equipment. .” SecurityAffairs – hacking, APT).

Telecommunications

Telecommunications Hacking Media Encryption

Syria-linked APT group SEA targets Android users with COVID19 lures

Security Affairs

APRIL 17, 2020

The experts found 71 malicious Android applications that were connecting to the same C2 server having an IP address linked to the Syrian Telecommunications Establishment (STE). “STE has a history of hosting infrastructure for the Syrian Electronic Army (SEA), a Syrian state-sponsored hacking group. . Pierluigi Paganini.

Surveillance

Surveillance Telecommunications Mobile Advertising

Social media partially disrupted in Cuba amid anti-government protests

Security Affairs

JULY 13, 2021

. / AS27725) including Cubacel, the cellular network operated by Cuba’s sole telecommunications company.” VPN services have yet to be blocked in the country, allowing citizens to bypass internet censorship. SecurityAffairs – hacking, Cuba). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Media

Media Government Internet Internet

Iran denies successful cyber attacks hit infrastructures of its oil sector

Security Affairs

SEPTEMBER 21, 2019

According to NetBlocks , an organization that tracks internet outages, the country suffered limited intermittent disruptions of internet connectivity. SecurityAffairs – Iran, hacking). Despite the statement, security experts believe that a cyber offensive against Iranian infrastructure is onoing. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Media Telecommunications Government

Russian spies are attempting to tap transatlantic undersea cables

Security Affairs

MARCH 1, 2020

Ireland is a strategic place for intercontinental communications because it represents the place where undersea cables which carry internet traffic connect to Europe. SecurityAffairs – hacking, undersea cables). ” reported The Sunday Times. Source [link]. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Wireless

Wireless Surveillance Telecommunications Advertising

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

France’s second-largest telecoms provider Free suffered a cyber attack

Trending Sources

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Cell Networks Hacked by (Probable) Nation-State Attackers

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Massive DDoS attack brought down 25% Iranian Internet connectivity

FBI Shuts Down Chinese Botnet

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

T-Mobile detected network intrusion attempts and blocked them

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

US Cyber Command and Microsoft Are Both Disrupting TrickBot

Americans urged to use encrypted messaging after large, ongoing cyberattack

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

China-linked hackers target telecommunication providers in the Middle East

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

SFO discloses data breach following the hack of 2 of its websites

China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)

China-linked LightBasin group accessed calling records from telcos worldwide

Russia-linked APT Seashell Blizzard is behind the long running global access operation BadPilot campaign

ICANN warns of large-scale attacks on Internet infrastructure

INTERNET BLOCKING IN MYANMAR – SECRET BLOCK LIST AND NO MEANS TO APPEAL

Salt Typhoon Expands Espionage Campaign, Targets Cisco Routers

Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers

New hacking group ‘Metador’ lurking in ISP networks for months

China-linked APT UNC3886 targets EoL Juniper routers

On Chinese "Spy Trains"

Metador, a never-before-seen APT targeted ISPs and telco for about 2 years

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate

AT&T confirmed that a data breach impacted 73 million customers

NCSC: New UK law bans default passwords on smart devices

New law will issue bans, fines for using default passwords on smart devices

3.5m IP cameras exposed, with US in the lead

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

ShroudedSnooper threat actors target telecom companies in the Middle East

AT&T states that the data breach impacted 51 million former and current customers

BackdoorDiplomacy APT targets diplomats from Africa and the Middle East

Syria-linked APT group SEA targets Android users with COVID19 lures

Social media partially disrupted in Cuba amid anti-government protests

Iran denies successful cyber attacks hit infrastructures of its oil sector

Russian spies are attempting to tap transatlantic undersea cables

Stay Connected