Bleeping Computer
Vodafone Portugal 4G and 5G services down after cyberattack
Vodafone Portugal suffered a cyberattack causing country-wide service outages, including the disruption of 4G/5G data networks, SMS texts, and television services.
Cyber Security News
ConnectedIO’s 3G/4G Routers Vulnerability Let Hackers Execute Malicious Code
Critical issues in ConnectedIO's ER2000 edge routers have been discovered, and an attacker can leverage them to completely compromise the cloud infrastructure
The Hacker News
High-Severity Flaws in ConnectedIO's 3G/4G Routers Raise Concerns for IoT Security
Multiple high-severity vulnerabilities discovered in ConnectedIO's routers and cloud platform could let hackers execute malicious code.
ZDNet
Vodafone Portugal hit with cyberattack affecting 4G/5G network, TV, SMS services and more | ZDNet
The company discovered the network disruption on Monday night.
ZDNet
Canada to ban Huawei and ZTE and tell telcos to rip out 5G and 4G equipment | ZDNet
While taking longer to ban Huawei and ZTE than some of the Five Eyes, Canada has also gone further by requiring telcos to rip out LTE equipment from the vendors by the start of 2028.
Bleeping Computer
Canada bans Huawei and ZTE from 5G networks over security concerns
The Government of Canada announced its intention to ban the use of Huawei and ZTE telecommunications equipment and services across the country's 5G and 4G networks.
Cyber Security News
New 5Ghoul Attack Impacts 5G Devices From Popular Brands
Cybersecurity researchers from the following organizations recently discovered the new 5Ghoul attack that impacts the 5G devices
DataBreaches
Cyberattack brings down Vodafone Portugal mobile, voice, and TV services
Catalin Cimpanu reports: Vodafone Portugal said today that a large chunk of its customer data services went offline overnight following “a deliberate and...
Bleeping Computer
New 5Ghoul attack impacts 5G phones with Qualcomm, MediaTek chips
A new set of vulnerabilities in 5G modems by Qualcomm and MediaTek, collectively called "5Ghoul," impact 710 5G smartphone models from Google partners (Android) and Apple, routers, and USB modems.
ZDNet
Best mobile VPN (2022) | ZDNet
What's the best mobile VPN? Our number one pick is NordVPN! We analyzed privacy features, reliability, mobile platforms, and speed to determine the best mobile VPN, whether you are using an iOS-powered iPhone or Android smartphone.
Bleeping Computer
Android users can now disable 2G to block Stingray attacks
Google has finally rolled out an option on Android allowing users to disable 2G connections, which come with a host of privacy and security problems exploited by cell-site simulators.
The Hacker News
5 Must-Know Facts about 5G Network Security and Its Cloud Benefits
Discover the untold security secrets of 5G! Find out how encryption, privacy protection, and more are transforming mobile connectivity.
Security Affairs
Vodafone investigates claims of a data breach made by Lapsus$ gang
Vodafone is investigating a recently suffered cyberattack, after a ransomware gang Lapsus$ claimed to have stolen its source code. Vodafone announced to have launched an investigation after the Lapsus$ cybercrime group claimed to have stolen its source code. The Lapsus$ gang claims to have stolen approximately 200 GB of source code files, allegedly contained in […]
The Cyber Express
Vodafone Egypt Outage: Cyberattack or Upgrade Hiccup?
Vodafone Egypt, the largest mobile operator in the country serving over 40 million customers, finds itself grappling with a partial
DarkReading
Airborne Drones Are Dropping Cyber-Spy Exploits in the Wild
Drone-based cyberattacks to spy on corporate targets are no longer hypothetical, one incident from this summer shows.
The Record
Cyberattack brings down Vodafone Portugal mobile, voice, and TV services
Vodafone Portugal said today that a large chunk of its customer data services went offline overnight following "a deliberate and malicious cyberattack intended to cause damage and disruption."
Bleeping Computer
Croatian phone carrier data breach impacts 200,000 clients
Croatian phone carrier 'A1 Hrvatska' has disclosed a data breach exposing the personal information of 10% of its customers, roughly 200,000 people.
Infosecurity News
CISA Publishes 5G Security Evaluation Process Plan
CISA releases a five-step plan to aid agencies in the development and deployment of 5G projects
SecurityWeek
European Telecommunications Standards Institute Discloses Data Breach
Hackers stole a database containing the list of the European Telecommunications Standards Institute’s online users.
The Hacker News
Zyxel Firewall Devices Vulnerable to Remote Code Execution Attacks — Patch Now
Zyxel releases critical security patches for firewall devices. Flaw could allow remote code execution on affected systems.
The Hacker News
Zyxel Firewalls Under Attack! Urgent Patching Required
Attention all network administrators! Zyxel firewalls under attack! Act now to prevent a potential DoS attack and remote code execution.
SecurityWeek
Palo Alto Networks Unveils New Rugged Firewall for Industrial Environments
Palo Alto Networks has launched a new rugged firewall for industrial environments and announced several OT security improvements.
Security Affairs
Croatian phone carrier A1 Hrvatska discloses data breach
Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted roughly 200,000 customers. Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted 10% of its customers, roughly 200,000 people. Threat actors had access to sensitive personal information of the customers, including names, personal identification numbers, physical addresses, and […]
SecurityWeek
Energy Department Invests $45 Million in 16 Projects to Improve Cybersecurity
The US government makes a $45 million investment in 16 projects to improve cybersecurity across the energy sector.
Ars Technica
Verizon abandons its confusing mess of six “unlimited” wireless plans
Verizon simplifies its data plans: Do you want the fast one or the slow one?
Security Affairs
Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months
Ukrainian authorities revealed that Russia-linked APT Sandworm had been inside telecom giant Kyivstar at least since May 2023.
DarkReading
Operation Behind Predator Mobile Spyware Is 'Industrial Scale'
The Intellexa alliance has been using a range of tools for intercepting and subverting mobile and Wi-Fi technologies to deploy its surveillance tools, according to an investigation by Amnesty International and others.
The Hacker News
Google Using Clang Sanitizers to Protect Android Against Cellular Baseband Vulnerabilities
Google boosts Android security with Clang sanitizers! Meet IntSan and BoundSan, designed to catch vulnerabilities in the cellular baseband
The Record
Researchers discover dozens of new bugs affecting Sierra Wireless routers
The company’s AirLink cellular routers are often used in critical infrastructure sectors, such as government and emergency services.
SecurityWeek
Dozens of RCE Vulnerabilities Impact Milesight Industrial Router
Dozens of critical and high-severity vulnerabilities in the Milesight UR32L industrial router leading to code execution
The Hacker News
New 5G Modems Flaws Affect iOS Devices and Android Models from Major Brands
Major security flaws in 5G modems impact hundreds of smartphone models from brands like Apple, Samsung, and Google.
Bleeping Computer
Android 14 to let you block connections to unencrypted cellular networks
Google has announced new cellular security features for its upcoming Android 14, expected later this month, that aim to protect business data and communications.
Infosecurity News
#MWC2022: The Metaverse –
At MWC Barcelona leaders explored the opportunities available in the emerging metaverse
Latest Hacking News
This Side-Channel Attack Exploits SMS Delivery Reports To Retrieve Location
SMS delivery reports not only let the sender know about the message receipt, but can also leak the recipient’s location. This is what researchers have demonstrated in their recent study, showing how receiving a silent
Security Affairs
Kyivstar, Ukraine's largest mobile carrier brought down by a cyberattack
Kyivstar, the largest Ukraine service provider, was hit by a cyber attack that paralyzed its services .......
Security Affairs
Red TIM Research (RTR) team discovers a bug on Ericsson Network Manager
TIM Red Team Research (RTR) researchers discovered a new flaw on Ericsson Network Manager, aka Ericsson flagship network product. TIM Red Team Research (RTR) team discovered a new vulnerability affecting Ericsson Network Manager, which is known as Ericsson flagship network product. Ericsson Network Manager and network OSS As mentioned, we’re talking about an Ericsson flagship […]
Bleeping Computer
Nokia subsidiary discloses data breach after Conti ransomware attack
SAC Wireless, a US-based and independently-operating Nokia company subsidiary, has disclosed a data breach following a ransomware attack where Conti operators were able to successfully breach its network, steal data, and encrypt systems.
Bleeping Computer
Stealthy GTPDOOR Linux malware targets mobile operator networks
Security researcher HaxRob discovered a previously unknown Linux backdoor named GTPDOOR, designed for covert operations within mobile carrier networks.
Security Affairs
Red TIM Research (RTR) founds 2 bugs affecting F5 Traffix SDC
Experts at TIM research laboratory, Red Team Research (RTR), have disclosed a couple of bugs affecting F5 Traffix SDC. Among these 45 bugs fixed by the well-known manufacturer of computer security systems, 2 were detected by TIM research laboratory, Red Team Research (RTR), as part of the bug hunting activities, on the F5® Traffix® Signaling […]
The Cyber Express
Pakistan’s Islamabad’s Safe City Authority Online System Down After Hack
Islamabad's Safe City Authority experienced a significant disruption when its online system was breached by hackers, prompting an immediate shutdown.
ZDNet
2G's security weaknesses are still a problem, even for modern phones | ZDNet
EFF urges Apple to follow Google and give smartphone users the option to dodge 2G.
ZDNet
Microsoft confirms LAPSUS$ hit account with limited access after gang released alleged Bing and Cortana source
Redmond says no customer code or data was taken without directly addressing whether its own source was exfiltrated.
Bleeping Computer
Qualcomm vulnerability impacts nearly 40% of all mobile phones
A high severity security vulnerability found in Qualcomm's Mobile Station Modem (MSM) chips (including the latest 5G-capable versions) could enable attackers to access mobile phone users' text messages, call history, and listen in on their conversations.
Security Affairs
5Ghoul flaws impact hundreds of 5G devices with Qualcomm, MediaTek chips
A set of flaws, collectively called 5Ghoul, in the firmware implementation of 5G mobile network modems impacts Android and iOS devices.
Computerworld
Will World War III begin in cyberspace?
It's not the 100,000 Russian troops on Ukraine's borders that worries me as much as cyberattacks that can easily get out of hand.
ZDNet
Okta revises LAPSUS$ impact upwards to potentially 2.5% of customers
Company says a 'small percentage' of customers could have had their data viewed or acted on, and simple maths turns that number into 375 customers.
Ars Technica
One of 5G’s biggest features is a security minefield
There are vulnerabilities in 5G platforms carriers offer to wrangle embedded device data.
Bleeping Computer
"Sierra:21" vulnerabilities impact critical infrastructure routers
A set of 21 newly discovered vulnerabilities impact Sierra OT/IoT routers and threaten critical infrastructure with remote code execution, unauthorized access, cross-site scripting, authentication bypass, and denial of service attacks.
The Cyber Wire
Ukraine at D+650: Hybrid wars' spillover in cyberspace.
Drone technology improvises and adapts, but so do air defenses. Experts warn of hybrid wars' spillover into remote sections of cyberspace.
The Cyber Wire
Ukraine at D+690: Hybrid wars' spillover in cyberspace.
Drone technology improvises and adapts, but so do air defenses. Experts warn of hybrid wars' spillover into remote sections of cyberspace.
The Record
New law could allow GCHQ to monitor UK internet logs in real-time to tackle fraud
Britain’s cyber and signals intelligence agency GCHQ could monitor logs of domestic internet traffic in the United Kingdom in real-time to identify online fraud and interrupt criminals during the act, under a new law being considered by the government.
CSO
U.S. government proposals spell out 5G security advancements
A joint proposal from federal cybersecurity and defense agencies defines a process for ensuring the security of 5G networks.
Trend Micro
Attacks on 5G Infrastructure From Users’ Devices
Crafted packets from cellular devices such as mobile phones can exploit faulty state machines in the 5G core to attack cellular infrastructure. Smart devices that critical industries such as defense, utilities, and the medical sectors use for their daily operations depend on the speed, efficiency, and productivity brought by 5G. This entry describes CVE-2021-45462 as a potential use case to deploy a denial-of-service (DoS) attack to private 5G networks.
Trend Micro
SMS PVA Part 1: Underground Service for Cybercriminals
In this three-part blog entry, our team explored SMS PVA, a service built on top of a global bot network that compromises smartphone cybersecurity as we know it.
CSO
SASE in the spotlight as businesses prioritize edge network security
A new report discovers edge network definitions are in flux across industries as organizations look to augment traditional security controls to address edge network risks.
Trend Micro
ICS Security Event S4 2022 Review
The ICS Security Event S4 was held for the first time in two years, bringing together more than 800 business leaders and specialists from around the world to Miami Beach on 19-21 Feb 2022. The theme was CREATE THE FUTURE.
Trend Micro
Human vs Machine Identity Risk Management
In today's business world's dynamic and ever-changing digital landscape, organizations encounter escalating security challenges that demand a more business-friendly and pertinent approach.
ZDNet
Huawei spotlights healthcare, maritime in 5G use case
Healthcare and maritime are key sectors that can benefit from 5G connectivity with their need for low network latency, but they also have to prepare for higher security risks.
ZDNet
NSA says: Do these things to keep your home network safe from cyberattack
The NSA's 'Best Practices for Securing Your Home Network' guide provides remote workers with advice on how to protect against online threats.
Trend Micro
Attacks on 5G Infrastructure From User Devices: ASN.1 Vulnerabilities in 5G Cores
In the second part of this series, we will examine how attackers can trigger vulnerabilities by sending control messages masquerading as user traffic to cross over from user plane to control plane.
Trend Micro
Opening Critical Infrastructure: The Current State of Open RAN Security
The Open Radio Access Network (ORAN) architecture provides standardized interfaces and protocols to previously closed systems. However, our research on ORAN demonstrates the potential threat posed by malicious xApps that are capable of compromising the entire Ran Intelligent Controller (RIC) subsystem.
ZDNet
Five easy steps to keep your smartphone safe from hackers
Your smartphone contains your passwords, private messages, bank details and more. Here's how to keep that vital info a little bit safer.
ZDNet
10 ways to speed up your internet connection today
Is your slow internet connection getting you down? Here's how to fix the most common issues.
Trend Micro
Examining Log4j Vulnerabilities in Connected Cars and Charging Stations
In this entry we look into how Log4j vulnerabilities affect devices or properties embedded in or used for connected cars, specifically chargers, in-vehicle infotainment systems, and digital remotes for opening cars.
.webp)
Cyber Security News
10 Best Secure Network As a Service for MSP Providers - 2024
Secure Network As a Service for MSP: 1. Perimeter 81 2. Cloudflare 3. Netskope 4. VMware 5. Palo Alto Networks 6. Aarna Networks.