Security Affairs

APRIL 26, 2025

African multinational telecommunications company MTN Group disclosed a data breach that exposed subscribers’ personal information. MTN Group Limited is a South African multinational telecommunications company headquartered in Johannesburg. At this time, no ransomware groups have claimed responsibility for an attack.

Data breaches 106

Data breaches Telecommunications Financial Services Mobile 106

Security Affairs

DECEMBER 4, 2024

Disabling unnecessary protocols and services, avoiding default passwords, and verifying software integrity bolster resilience. Organizations should adopt secure password storage, phishing-resistant MFA, session token limits, and Role-Based Access Control (RBAC). “The reads the report published by the telecommunications company. “To

Telecommunications 113

Telecommunications Government Mobile Cyber threats 113

Security Affairs

APRIL 30, 2024

The UK National Cyber Security Centre (NCSC) orders smart device manufacturers to ban default passwords starting from April 29, 2024. National Cyber Security Centre (NCSC) is urging manufacturers of smart devices to comply with new legislation that bans default passwords. ” reads the announcement published by NCSC.

Passwords 136

Passwords Manufacturing Telecommunications Cyber Attacks 136

Heimadal Security

MAY 3, 2022

When it comes to sideloading malicious Windows DLLs into antivirus programs, stealing passwords to move laterally, and finally exfiltrating data from affected PCs, the hackers are quite persistent. The post Hacking Group Moshen Dragon Targets Asian Telecommunication Companies appeared first on Heimdal Security Blog. What Happened?

Telecommunications 105

Telecommunications Hacking Antivirus Passwords 105

The Hacker News

APRIL 29, 2024

National Cyber Security Centre (NCSC) is calling on manufacturers of smart devices to comply with new legislation that prohibits them from using default passwords, effective April 29, 2024.

Passwords 144

Passwords Telecommunications Manufacturing 144

Krebs on Security

FEBRUARY 1, 2021

The service, marketed in the underground under the name “ SMS Bandits ,” has been responsible for blasting out huge volumes of phishing lures spoofing everything from COVID-19 pandemic relief efforts to PayPal, telecommunications providers and tax revenue agencies. ” SMS Bandits offered an SMS phishing (a.k.a.

Phishing 356

Phishing Telecommunications Advertising Mobile 356

Schneier on Security

JULY 9, 2019

Original report : Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers. The attack was aiming to obtain CDR records of a large telecommunications provider.

Hacking 276

Hacking Telecommunications Malware Passwords 276

Krebs on Security

FEBRUARY 19, 2020

The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords. How would your organization hold up to a password spraying attack? As the Citrix hack shows, if you don’t know you should probably check, and then act on the results accordingly.

VPN 363

VPN Passwords Software Telecommunications 363

Security Affairs

FEBRUARY 25, 2025

“The NKTsKI recommends that all organizations change passwords and keys for accessing their systems operated in LANIT data processing centers as soon as possible. The group serves various sectors, including finance, government, healthcare, and telecommunications.

Telecommunications 102

Telecommunications Software Technology Healthcare 102

Security Boulevard

APRIL 30, 2024

The post Brits Ban Default Passwords — and More IoT Stupidity appeared first on Security Boulevard. Nice Cup of IoTea? The UK’s Product Security and Tele­comm­uni­cations Infra­struc­ture Act aims to improve the security of net-connected consumer gear.

IoT 135

IoT Passwords Social Engineering Telecommunications 135

Malwarebytes

NOVEMBER 25, 2021

And because of our high propensity to forgo changing default passwords that came with the smart devices we buy, we’re essentially putting ourselves—our homes and our family’s data and privacy—at the forefront of online attacks without us knowing. but not vehicles, smart meters, smart medical devices, laptops, and desktop computers.

Passwords 129

Passwords Telecommunications Internet Internet 129

Security Affairs

FEBRUARY 16, 2025

Storm-2372s targets during this time have included government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and energy/oil and gas in Europe, North America, Africa, and the Middle East.”

Phishing 115

Phishing Authentication Telecommunications Accountability 115

Security Affairs

MARCH 20, 2025

The malspam messages had the topic Free primary legal aid use a password-protected attachment Algorithm of actions of members of the family of a missing serviceman LegalAid.rar.

Computers and Electronics 108

Computers and Electronics Telecommunications Malware Surveillance 108

Security Affairs

OCTOBER 20, 2021

A China-linked hacking group, tracked as LightBasin (aka UNC1945 ), hacked mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019.

Telecommunications 138

Telecommunications Mobile Hacking Architecture 138

Krebs on Security

NOVEMBER 26, 2021

Korab filed a vulnerability report with Lumen demonstrating how a simple spoofed email could be used to disrupt Internet service for banks, telecommunications firms and even government entities. “This would effectively cut off Internet access for the impacted IP address blocks.”

Internet 72

Internet Internet Authentication Telecommunications 72

The Hacker News

DECEMBER 21, 2021

Multiple backdoors have been discovered during a penetration test in the firmware of a widely used voice over Internet Protocol (VoIP) appliance from Auerswald, a German telecommunications hardware manufacturer, that could be abused to gain full administrative access to the devices.

Penetration Testing 143

Penetration Testing Firmware Telecommunications Manufacturing 143

Security Affairs

MARCH 27, 2025

Arkana Security, a new ransomware group, claims to have breached the telecommunications provider WideOpenWest (WOW!). is a US-based telecommunications company that provides broadband internet, cable TV, and phone services. Compromised data includes usernames, passwords, security details, emails, and Firebase integration data.

Hacking 78

Hacking Telecommunications Data breaches Internet 78

Krebs on Security

APRIL 11, 2024

New York City based Sisense has more than 1,000 customers across a range of industry verticals, including financial services, telecommunications, healthcare and higher education. ” “We are taking this matter seriously and promptly commenced an investigation,” Dash continued.

CISO 308

CISO Encryption Telecommunications Financial Services 308

Security Affairs

FEBRUARY 13, 2025

On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware. Attackers inserted rogue JavaScript to capture usernames and passwords in real-time, enhancing lateral movement within networks. ” concludes the report.

Telecommunications 108

Telecommunications DNS Passwords Hacking 108

Krebs on Security

OCTOBER 12, 2020

“We disrupted Trickbot through a court order we obtained as well as technical action we executed in partnership with telecommunications providers around the world,” wrote Tom Burt , corporate vice president of customer security and trust at Microsoft, in a blog post this morning about the legal maneuver. Image: Microsoft.

Healthcare 361

Healthcare Ransomware Internet Internet 361

Security Boulevard

MARCH 24, 2025

but given the Salt Typhoon breach and the apparent lackluster security practices and culture at just about every American telecommunications company, this was too interesting to ignore. Cape is a mobile carrier startup claiming to provide a more secure and private service alternative to traditional telecommunications services.

Surveillance 75

Surveillance Telecommunications Malware Data breaches 75

Krebs on Security

AUGUST 12, 2020

For those who can’t be convinced to use a password manager, even writing down all of the account details and passwords on a slip of paper can be helpful, provided the document is secured in a safe place. Perhaps the most important place to enable MFA is with your email accounts. For more information on the NCTUE, see this page.

Accountability 355

Accountability Mobile Banking Passwords 355

Troy Hunt

MARCH 27, 2018

It began with a visit to the local Telstra store earlier this month to upgrade a couple of phone plans which resulted in me sitting alone by this screen whilst the Telstra staffer disappeared into the back room for a few minutes: Is it normal for @Telstra to display customer passwords on publicly facing terminals in their stores?

Passwords 191

Passwords Banking Mobile Telecommunications 191

Security Affairs

DECEMBER 30, 2020

.” T-Mobile said that threat actors did not access names on the account, physical or email addresses, financial data, credit card information, social security numbers, tax ID, passwords, or PINs. The telecommunication giant is in the process of notifying impacted customers.

Data breaches 145

Data breaches Mobile Telecommunications Accountability 145

The Last Watchdog

APRIL 13, 2022

The Russian government, military, and intelligence service may wish to achieve some operational effect, for example, disrupting the power grid or interfering with telecommunications infrastructure, which may be part of a larger war plan. Each of these organizations performs cyber operations for various reasons.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Security Affairs

APRIL 11, 2020

“The attackers inserted malicious computer code on these websites to steal some users’ login credentials,” reads a message posted to both site’s by the SFO’s Airport Information Technology and Telecommunications (ITT) director. In response to the incident, the SFO Airport reset all email and network passwords.

Data breaches 145

Data breaches Hacking Telecommunications Advertising 145

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches 133

Data breaches Telecommunications Banking Mobile 133

Security Affairs

MARCH 24, 2025

China-linked APT Weaver Ant infiltrated the network of a telecommunications services provider for over four years. First, attackers used specific keywords, such as “password” and “key,” in the payload, which WAFs typically redact in logs, obscuring the malicious content.

Telecommunications 67

Telecommunications Encryption Accountability Firewall 67

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks.

Mobile 135

Mobile Data breaches Telecommunications Accountability 135

Security Affairs

JULY 10, 2021

Mint Mobile is an American telecommunications company which sells mobile phone services and operates as an MVNO on T-Mobile’s cellular network in the United States. An unauthorized person also potentially accessed subscribers’ personal information, including call history, names, addresses, emails, and passwords.

Mobile 144

Mobile Data breaches Telecommunications Passwords 144

Krebs on Security

MARCH 20, 2023

Image: Shutterstock Telecommunications giant AT&T disclosed this month that a breach at a marketing vendor exposed certain account information for nine million customers. “An individual’s CPNI can be shared with other telecommunications providers for network operating reasons,” wrote TechTarget’s Gavin Wright.

Mobile 312

Mobile Wireless Advertising Accountability 312

Security Affairs

JUNE 25, 2019

Once compromised the networks of telecommunication companies, attackers can access to mobile phone users’ call data records. “Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers.

Telecommunications 107

Telecommunications Hacking Advertising Mobile 107

Krebs on Security

SEPTEMBER 17, 2018

In January 2018, GovPayNet was acquired by Securus Technologies , a Carrollton, Texas- based company that provides telecommunications services to prisons and helps law enforcement personnel keep tabs on mobile devices used by former inmates. We will continue to evaluate security and access to all systems and customer records.”.

Mobile 271

Mobile Government Identity Theft Telecommunications 271

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.” Pierluigi Paganini.

Data breaches 138

Data breaches Telecommunications Passwords Advertising 138

Krebs on Security

MARCH 5, 2021

In each incident, the intruders have left behind a “web shell,” an easy-to-use, password-protected hacking tool that can be accessed over the Internet from any browser. organizations, including banks, credit unions, non-profits, telecommunications providers, public utilities and police, fire and rescue units.

Hacking 364

Hacking Software Government Internet 364

Security Affairs

DECEMBER 14, 2022

Some of the most popular brands don’t enforce a strong password policy, meaning anyone can peer into their owners’ lives. While the default security settings have improved over the review period, some popular brands either offer default passwords or no authentication, meaning anyone can spy on the spies.

Surveillance 145

Surveillance Manufacturing Internet Internet 145

Security Affairs

DECEMBER 15, 2021

Researchers uncovered a new Seedworm campaign targeting telecommunication and IT service providers in the Middle East and Asia. In the recent campaign against telecommunication, the attackers may have attempted to pivot to other targets by connecting to the Exchange Web Services (EWS) of other organizations.

Telecommunications 114

Telecommunications Passwords Phishing Hacking 114