#NetworkDefense

T-Mobile US CSO: Spies jumped from one telco to another in a way ‘I’ve not seen in my career’

December 4, 2024 by Xynik

December 4, 2024 at 07:58PM T-Mobile US swiftly thwarted cyber-espionage attempts by a Chinese-backed group, Salt Typhoon, which compromised a connected network but accessed none of T-Mo’s sensitive customer data. T-Mobile emphasized its layered defenses and the use of advanced authentication methods to prevent further intrusions. US officials recommend strong encryption for communications. **Meeting Takeaways:** … Read more

Government Guidance on Chinese Telco Hacking Highlights Threat to Cisco Devices

December 4, 2024 by Xynik

December 4, 2024 at 08:03AM US, Canada, Australia, and New Zealand agencies issued guidance to improve communication infrastructure security against China-linked cyber threats. Recommendations focus on enhancing network visibility, hardening devices, and specific advice for Cisco systems following espionage attacks targeting telecom providers. Agencies report uncertainty about the full extent of these threats. **Meeting Takeaways:** … Read more

US shares tips to block hackers behind recent telecom breaches

December 3, 2024 by Xynik

December 3, 2024 at 02:52PM CISA issued guidance to strengthen defenses against the Salt Typhoon Chinese threat group, which compromised major telecoms like AT&T and T-Mobile, accessing sensitive data. The advisory includes hardening practices such as timely device updates, disabling insecure protocols, and enhancing visibility into network activities. Vigilance is emphasized for effective defense. ### … Read more

T-Mobile Shares More Information on China-Linked Cyberattack

November 28, 2024 by Xynik

November 28, 2024 at 06:30AM T-Mobile reported a cyberattack linked to the Chinese group Salt Typhoon but stated the attack was blocked with no access to sensitive customer data. T-Mobile’s Chief Security Officer clarified that while attempts were detected, defenses protected their systems, and connections to the attacking network were severed promptly. ### Meeting Takeaways … Read more

Chinese hackers breached T-Mobile’s routers to scope out network

November 27, 2024 by Xynik

November 27, 2024 at 11:58AM T-Mobile reported that the “Salt Typhoon” Chinese hackers attempted to infiltrate its systems by hacking routers. However, the company successfully blocked their advancement, protecting customer data. This threat group, active since 2019, has targeted several telecom companies but was thwarted in T-Mobile’s case, ensuring no sensitive data was compromised. ### … Read more

New Cisco ASA and FTD features block VPN brute-force password attacks

October 26, 2024 by Xynik

October 26, 2024 at 01:44PM Cisco has implemented new security features for ASA and Firepower Threat Defense to combat brute-force and password spray attacks, enhancing network protection and resource efficiency. The update allows admins to configure settings to block repeated failed login attempts and other malicious connection attempts, significantly reducing successful attack rates. ### Meeting … Read more

Name That Toon: Tug of War

September 16, 2024 by Xynik

September 16, 2024 at 01:03PM Submit a clever cybersecurity-related caption by Oct. 16, 2024, to [email protected] with the subject “Dark Reading September Toon” or via X, Facebook, and LinkedIn. Congrats to last month’s winner, Renen Wasserman. Notable entries included “Blindfolded and Breached: The Modern Cybersecurity Nightmare” and “This 5th level of multi-authentication may be taking … Read more

Sneaky SnakeKeylogger slithers into Windows inboxes to steal sensitive secrets

August 5, 2024 by Xynik

August 5, 2024 at 10:38AM Criminals are targeting Windows users with SnakeKeylogger, a malicious software that records keystrokes, steals credentials, takes screenshots, and sends sensitive information to fraudsters. This malware, known for its sophistication and crafty exfiltration of data, is typically spread through phishing campaigns. It can be hidden in Office documents or PDFs attached … Read more

‘Error’ in Microsoft’s DDoS defenses amplified 8-hour Azure outage

July 31, 2024 by Xynik

July 31, 2024 at 09:03AM Microsoft admitted that its defensive implementation exacerbated an Azure instability due to a DDoS attack, with an error in defense amplifying the impact. Despite their global defense strategy, the response to the attack did not go well, impacting various services. Microsoft’s responses and reviews are expected in the coming weeks. … Read more

EC-Council Democratizes Hands-On Cybersecurity Training With 8 Cyber Courses

July 22, 2024 by Xynik

July 22, 2024 at 04:52PM EC-Council, a renowned cybersecurity company, launched the Cyber Essentials Series comprising eight affordable courses to address the widening global cyber skills gap. These courses aim to provide foundational cybersecurity training in key domains and support individuals seeking to enhance their cybersecurity expertise or pursue a career in this field. The … Read more