Information Security and Telecommunications

European Telecommunications Standards Institute (ETSI) suffered a data breach

Security Affairs

OCTOBER 2, 2023

The European Telecommunications Standards Institute (ETSI) disclosed a data breach, threat actors had access to a database of its users. Threat actors stole a database containing the list of users of the portal of the European Telecommunications Standards Institute ( ETSI ).

Telecommunications

Telecommunications Data breaches Technology Passwords

Ukrainian telecommunications operators hit by DarkCrystal RAT malware

Security Affairs

JUNE 27, 2022

The Ukrainian CERT-UA warns of attacks against Ukrainian telecommunications operators involving the DarkCrystal RAT. The Governmental Computer Emergency Response Team of Ukraine (CERT-UA) is warning of a malware campaign targeting Ukrainian telecommunications operators with the DarkCrystal RAT. Pierluigi Paganini.

Telecommunications

Telecommunications Malware Media Passwords

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA).

Telecommunications

Telecommunications Authentication Data collection Passwords

RansomHub gang claims the hack of the telecommunications giant Frontier Communications

Security Affairs

JUNE 4, 2024

The RansomHub ransomware group added the American telecommunications company Frontier Comunications to the list of victims on its Tor leak site. The RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications.

Telecommunications

Telecommunications Hacking Data breaches Cybercrime

China-linked hackers target telecommunication providers in the Middle East

Security Affairs

MARCH 24, 2023

Researchers reported that China-linked hackers targeted telecommunication providers in the Middle East in the first quarter of 2023. In the first quarter of 2023, SentinelLabs researchers spotted the initial phases of attacks against telecommunication providers in the Middle East. ” reads the report published by SentinelLabs.

Telecommunications

Telecommunications Malware Mobile Internet

China-linked APT41 group targets telecommunications companies with new backdoor

Security Affairs

OCTOBER 31, 2019

China-linked APT41 group is targeting telecommunications companies with a new piece of malware used to spy on text messages of highly targeted individuals. The experts found the MessageTap backdoor installed on a Linux-based Short Message Service Center (SMSC) server belonging to an unnamed telecommunications company.

Telecommunications

Telecommunications Malware Advertising Mobile

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

OCTOBER 20, 2021

A China-linked hacking group, tracked as LightBasin (aka UNC1945 ), hacked mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019.

Telecommunications

Telecommunications Mobile Hacking Architecture

Why CISA is Warning CISOs About a Breach at Sisense

Krebs on Security

APRIL 11, 2024

New York City based Sisense has more than 1,000 customers across a range of industry verticals, including financial services, telecommunications, healthcare and higher education. ” “We are taking this matter seriously and promptly commenced an investigation,” Dash continued.

CISO

CISO Encryption Telecommunications Financial Services

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

Security Affairs

OCTOBER 29, 2023

After the invasion of the Crimea and the eastern Ukraine, Ukrainian telecommunications infrastructure was disable by Russian soldiers. Telecommunication infrastructure and internet services are critical infrastructure and were targeted by both Russian and Ukrainian threat actors. reads the advisory published by the CERT-UA.

Internet

Internet Internet Telecommunications DDOS

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. is a French telecommunications company, subsidiary of Iliad S.A. that provides voice, video, data, and Internet telecommunications to consumers in France. Free S.A.S.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

Black Basta ransomware gang hit BT Group

Security Affairs

DECEMBER 4, 2024

British multinational telecommunications holding company BT Group (formerly British Telecom) announced it has shut down some of its servers following a Black Basta ransomware attack. BT Group (formerly British Telecom)’s Conferencing division shut down some of its servers following a Black Basta ransomware attack.

Ransomware

Ransomware Telecommunications Healthcare Insurance

CPDP 2021 – Moderator: Rob Van Eijk ‘Technical Standards Bringing Together Data Protection With Telecommunications Regulation, Digital Regulations And Procurement’

Security Boulevard

MAY 17, 2021

The post CPDP 2021 – Moderator: Rob Van Eijk ‘Technical Standards Bringing Together Data Protection With Telecommunications Regulation, Digital Regulations And Procurement’ appeared first on Security Boulevard.

Telecommunications

Telecommunications Education InfoSec Information Security

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

Security Affairs

DECEMBER 30, 2020

T-Mobile discovered that the attackers had access to the CPNI (Customer Proprietary Network Information). Customer proprietary network information (CPNI) is the data collected by telecommunications companies about a consumer’s telephone calls. The telecommunication giant is in the process of notifying impacted customers.

Data breaches

Data breaches Mobile Telecommunications Wireless

Massive DDoS attack brought down 25% Iranian Internet connectivity

Security Affairs

FEBRUARY 9, 2020

“Network data from the NetBlocks internet observatory confirm extensive disruption to telecommunication networks in Iran on the morning of Saturday, 8 February 2020 lasting several hours.” ” reads a post published by NetBlocks. local time (08:15 UTC) affecting cellular and fixed-line operators.

DDOS

DDOS Internet Internet Telecommunications

230K individuals impacted by a data breach suffered by Telco provider Tangerine

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. The telco notified the Australian Cyber Security Centre and the Office of the Australian Information Commissioner. 

Data breaches

Data breaches Telecommunications Banking Mobile

A powerful DDoS attack hit Hungarian banks and telecoms services

Security Affairs

SEPTEMBER 26, 2020

Hungarian financial institutions and telecommunications infrastructure were hit by a powerful DDoS attack originating from servers in Russia, China and Vietnam. A powerful DDoS attack hit some Hungarian banking and telecommunication services that briefly disrupted them.

DDOS

DDOS Banking Telecommunications Advertising

NCSC: New UK law bans default passwords on smart devices

Security Affairs

APRIL 30, 2024

The law, known as the Product Security and Telecommunications Infrastructure act (or PSTI act), will be effective on April 29, 2024. “From 29 April 2024, manufacturers of consumer ‘smart’ devices must comply with new UK law.” ” reads the announcement published by NCSC. ” The U.K.

Passwords

Passwords Manufacturing Telecommunications Cyber Attacks

T-Mobile customers were hit with SIM swapping attacks

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks.

Mobile

Mobile Data breaches Telecommunications Identity Theft

France will not ban Huawei from its upcoming 5G networks

Security Affairs

SEPTEMBER 1, 2020

French President Emmanuel Macron announced that France won’t ban the Chinese giant Huawei from its upcoming 5G telecommunication networks. French President Emmanuel Macron announced that his government will not exclude Chinese telecom giant Huawei from the building of the upcoming 5G telecommunication networks.

Telecommunications

Telecommunications Advertising Technology Manufacturing

Hackers gained access to T-Mobile customers and employee personal info

Security Affairs

MARCH 5, 2020

New problems for the wireless carrier T-Mobile that disclosed a data breach that exposed some of the customers’ personal information. A data breach notification published by the telecommunications giant on its website revealed that the security breach impacted both employees and customers.

Mobile

Mobile Data breaches Telecommunications Wireless

A Ransomware infected the network of the cybersecurity firm Prosegur

Security Affairs

NOVEMBER 28, 2019

The Spanish multinational security company Prosegur announced that it was of a ransomware attack that disrupted its telecommunication platform. A piece of the Ryuk Ransomware infected the network of the multinational cybersecurity firm Prosegur, forcing the company to shut down it. ” reported BleepingComputer.

Ransomware

Ransomware Cybersecurity Telecommunications Advertising

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

“The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” The Chinese APT focuses on government entities and telecommunications companies in Southeast Asia.

Mobile

Mobile Telecommunications Data breaches Hacking

Metador, a never-before-seen APT targeted ISPs and telco for about 2 years

Security Affairs

SEPTEMBER 26, 2022

A previously undetected hacking group, tracked as Metador, has been targeting telecommunications, internet services providers (ISPs), and universities for about two years. SentinelLabs discovered two windows malware platforms, dubbed ‘metaMain’ and ‘Mafalda,’ and evidence of the existence of an additional Linux implant.

Telecommunications

Telecommunications Authentication Malware Internet

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

Iran-linked Lyceum APT group uses a new.NET-based DNS backdoor to target organizations in the energy and telecommunication sectors. The Iran-linked Lyceum APT group, aka Hexane or Spilrin, used a new.NET-based DNS backdoor in a campaign aimed at companies in the energy and telecommunication sectors, ZScaler researchers warn.

DNS

DNS Telecommunications Malware Phishing

FCC adds Kaspersky to Covered List due to unacceptable risks to national security

Security Affairs

MARCH 26, 2022

Below is the list of Covered Equipment or Services added on March 25, 2022: Information security products, solutions, and services supplied, directly or indirectly, by AO Kaspersky Lab or any of its predecessors, successors, parents, subsidiaries, or affiliates. Telecommunications services provided by China Telecom (Americas) Corp.

Risk

Risk Telecommunications Mobile Antivirus

Telstra Telecom Suffers Data Breach Potentially Exposing Employee Information

The Hacker News

OCTOBER 5, 2022

Australia's largest telecommunications company Telstra disclosed that it was the victim of a data breach through a third-party, nearly two weeks after Optus reported a breach of its own. There has been no breach of Telstra's systems," Narelle Devine, the company's chief information security officer for the Asia Pacific region, said.

Data breaches

Data breaches Telecommunications Accountability Information Security

US and UK details a new Python backdoor used by MuddyWater APT group

Security Affairs

FEBRUARY 24, 2022

The group’s victims are mainly in the telecommunications, government (IT services), and oil sectors. In January, US Cyber Command (USCYBERCOM) officially linked the MuddyWater APT group to Iran’s Ministry of Intelligence and Security (MOIS). The group evolved over the years by adding new attack techniques to its arsenal.

Telecommunications

Telecommunications Malware Government Hacking

U.S. gov adds more Chinese Telecom firms to the Covered List

Security Affairs

SEPTEMBER 21, 2022

This action demonstrates our whole-of-government effort to protect network security and privacy.”. national security. International telecommunications services provided by China Mobile International USA Inc. International telecommunications services provided by China Mobile International USA Inc.

Telecommunications

Telecommunications Mobile Government Risk

Operation Soft Cell – Multiple telco firms hacked by nation-state actor

Security Affairs

JUNE 25, 2019

Once compromised the networks of telecommunication companies, attackers can access to mobile phone users’ call data records. “Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers.

Telecommunications

Telecommunications Hacking Advertising Mobile

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

. “The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.” ” reads the joint statement issued by CISA and FBI.

Government

Government Telecommunications Surveillance Risk

US FCC bans China Unicom Americas telecom over national security risks

Security Affairs

JANUARY 29, 2022

The Chinese telecom company was banned from providing telecommunication services within the United States. ” Yesterday we took a critical step to protect our communications networks from foreign national security threats. .” “First, the Order finds that China Unicom Americas, a U.S. ” reads the order.

Risk

Risk Telecommunications Government Mobile

Russian Sandworm APT impersonates Ukrainian telcos to deliver malware

Security Affairs

SEPTEMBER 21, 2022

Russia-linked APT group Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. Russia-linked cyberespionage group Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. ” reads the report published by Recorded Future.

Malware

Malware Telecommunications DNS Hacking

New GTPDOOR backdoor is designed to target telecom carrier networks

Security Affairs

MARCH 4, 2024

LightBasin targeted and compromised mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019.

Telecommunications

Telecommunications Firewall Mobile Malware

AT&T confirmed that a data breach impacted 73 million customers

Security Affairs

MARCH 30, 2024

AT&T initially denied any data breach, below is the statement from the telecomunication giant : “Based on our investigation Thursday, the information that appeared in an internet chat room does not appear to have come from our systems,” On Saturday, the telecommunications company retracted its initial denial and confirmed the data breach.

Data breaches

Data breaches Telecommunications Cybercrime Hacking

TELEGRAM LATENCY IN BELARUS: HOW THE NATIONAL PROVIDER CONTROLS THE TRAFFIC

Security Affairs

NOVEMBER 5, 2020

Beltelecom, the national telecommunications company in Belarus, fully owned by the Government of Belarus and operated by the Ministry of Telecommunications, controls the traffic of Telegram, generating latency for the messenger platform in Belarus. Although the service was reachable, an increased latency was noted among the users.

Telecommunications

Telecommunications Media Advertising Hacking

WIP19, a new Chinese APT targets IT Service Providers and Telcos

Security Affairs

OCTOBER 14, 2022

Chinese-speaking threat actor, tracked as WIP19, is targeting telecommunications and IT service providers in the Middle East and Asia. SentinelOne researchers uncovered a new threat cluster, tracked as WIP19, which has been targeting telecommunications and IT service providers in the Middle East and Asia.

Telecommunications

Telecommunications Malware Hacking Information Security

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user location data

Security Affairs

APRIL 29, 2024

The Communications Act mandates that telecommunications carriers safeguard the confidentiality of specific customer data, including location information, about telecommunications services. All four carriers condemned the FCC’s decision and announced they would appeal it.

Wireless

Wireless Telecommunications Insurance Mobile

Operation GhostShell: MalKamak APT targets aerospace and telco firms

Security Affairs

OCTOBER 7, 2021

Operation GhostShell: Threat actors used ShellClient malware in cyberespionage campaigns aimed at companies in the aerospace and telecommunications sectors. Hackers use stealthy ShellClient malware on aerospace, telco firms.

Telecommunications

Telecommunications Malware Hacking Information Security

Telstra Telecom discloses data breach impacting former and current employees

Security Affairs

OCTOBER 5, 2022

Bad news for the Australian telecommunications industry, the largest company in the country Telstra suffered a data breach. Australia’s largest telecommunications company Telstra disclosed a data breach through a third-party supplier. It seems that the security breach also impacted other companies.

Data breaches

Data breaches Telecommunications Accountability Information Security

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Security Affairs

OCTOBER 22, 2023

The group targeted organizations in multiple sectors, including defense, government, electronics, telecommunication, technology, media, telecommunication industries. At the end of August, Microsoft linked the Chinese APT Flax Typhoon (aka Ethereal Panda) to a cyber espionage campaign that targeted dozens of organizations in Taiwan.

Telecommunications

Telecommunications Technology Government Firmware

Recently discovered Hexane group targets the oil and gas industry

Security Affairs

AUGUST 1, 2019

Security researchers at Dragos Inc have tracked the activity of a threat actor recently discovered and dubbed Hexane. Security experts at Dragos Inc. have discovered a new threat actor, tracked as Hexane, that is targeting organizations in the oil and gas industry and telecommunication providers. ” continues Dragos.

Telecommunications

Telecommunications Advertising Hacking Malware

Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate

Security Affairs

JANUARY 2, 2022

The gang also targeted the South American telecommunication providers Claro and Embratel. The post Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, Lapsus$ ransomware).

Media

Media Ransomware Telecommunications Accountability

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

The Russian government, military, and intelligence service may wish to achieve some operational effect, for example, disrupting the power grid or interfering with telecommunications infrastructure, which may be part of a larger war plan. About the essayist: Don Boian is the Chief Information Security Officer at Hound Labs, Inc.,

Cybersecurity

Cybersecurity Cybercrime Education Government

China-linked Moshen Dragon abuses security software to sideload malware

Security Affairs

MAY 3, 2022

A China-linked APT group, tracked as Moshen Dragon, has been observed targeting the telecommunication sector in Central Asia with ShadowPad and PlugX malware, SentinelOne warns. The threat actor systematically utilized software distributed by security vendors to sideload ShadowPad and PlugX variants.”

Software

Software Malware Telecommunications Antivirus

European Telecommunications Standards Institute (ETSI) suffered a data breach

Ukrainian telecommunications operators hit by DarkCrystal RAT malware

Trending Sources

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

RansomHub gang claims the hack of the telecommunications giant Frontier Communications

China-linked hackers target telecommunication providers in the Middle East

China-linked APT41 group targets telecommunications companies with new backdoor

China-linked LightBasin group accessed calling records from telcos worldwide

Why CISA is Warning CISOs About a Breach at Sisense

IT Army of Ukraine disrupted internet providers in territories occupied by Russia

France’s second-largest telecoms provider Free suffered a cyber attack

Black Basta ransomware gang hit BT Group

CPDP 2021 – Moderator: Rob Van Eijk ‘Technical Standards Bringing Together Data Protection With Telecommunications Regulation, Digital Regulations And Procurement’

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

Massive DDoS attack brought down 25% Iranian Internet connectivity

230K individuals impacted by a data breach suffered by Telco provider Tangerine

A powerful DDoS attack hit Hungarian banks and telecoms services

NCSC: New UK law bans default passwords on smart devices

T-Mobile customers were hit with SIM swapping attacks

France will not ban Huawei from its upcoming 5G networks

Hackers gained access to T-Mobile customers and employee personal info

A Ransomware infected the network of the cybersecurity firm Prosegur

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Metador, a never-before-seen APT targeted ISPs and telco for about 2 years

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

FCC adds Kaspersky to Covered List due to unacceptable risks to national security

Telstra Telecom Suffers Data Breach Potentially Exposing Employee Information

US and UK details a new Python backdoor used by MuddyWater APT group

U.S. gov adds more Chinese Telecom firms to the Covered List

Operation Soft Cell – Multiple telco firms hacked by nation-state actor

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

US FCC bans China Unicom Americas telecom over national security risks

Russian Sandworm APT impersonates Ukrainian telcos to deliver malware

New GTPDOOR backdoor is designed to target telecom carrier networks

AT&T confirmed that a data breach impacted 73 million customers

TELEGRAM LATENCY IN BELARUS: HOW THE NATIONAL PROVIDER CONTROLS THE TRAFFIC

WIP19, a new Chinese APT targets IT Service Providers and Telcos

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user location data

Operation GhostShell: MalKamak APT targets aerospace and telco firms

Telstra Telecom discloses data breach impacting former and current employees

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Recently discovered Hexane group targets the oil and gas industry

Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

China-linked Moshen Dragon abuses security software to sideload malware

Stay Connected