FCC Proposes New Cybersecurity Rules for Telecoms

December 11, 2024 at 08:10AM The FCC proposed new cybersecurity rules for telecommunications companies in response to recent foreign cyberattacks, emphasizing the need for robust network security. The plan requires annual certifications, risk management, and modernization efforts. Additionally, legislation is introduced to enforce digital security standards and regular assessments to prevent unauthorized access and vulnerabilities. … Read more

Researchers Uncover Espionage Tactics of China-Based APT Groups in Southeast Asia

December 11, 2024 at 07:30AM A China-based threat actor has been linked to cyber attacks in Southeast Asia targeting key sectors, including government and telecoms, since October 2023. Characterized by sophisticated tools and techniques, attacks involved prolonged network access and data exfiltration. Recent activities indicate persistent cyber espionage amidst ongoing regional geopolitical tensions. ### Meeting … Read more

White House: Salt Typhoon hacked telcos in dozens of countries

December 4, 2024 at 06:05PM Chinese state hackers, identified as Salt Typhoon, have compromised telecommunications firms in multiple countries, including eight in the U.S., with possible breaches lasting one to two years. Although classified communications remain secure, federal agencies recommend using encrypted messaging to protect against future intrusions. CISA and FBI released guidance for enhanced … Read more

T-Mobile US takes a victory lap after stopping cyberattacks: ‘Other providers may be seeing different outcomes’

November 27, 2024 at 04:05PM Chinese cyber-espionage group “Salt Typhoon” allegedly compromised a wireline provider’s network to access T-Mobile US systems. T-Mobile thwarted these attempts, ensuring no sensitive customer data was accessed. The company, which has faced breaches previously, is seeing positive results from enhanced cybersecurity measures following a significant investment. **Meeting Notes Takeaways:** 1. … Read more

Fancy Bear ‘Nearest Neighbor’ Attack Uses Nearby Wi-Fi Network

November 25, 2024 at 01:29PM Russian APT group Fancy Bear employed a novel “Nearest Neighbor” cyber-espionage technique during the Russia-Ukraine war, infiltrating a US organization by compromising nearby Wi-Fi networks. This remote attack underscores the security risks of proximity and emphasizes the need for stronger defenses against Wi-Fi vulnerabilities and enhanced monitoring practices. ### Meeting … Read more

Salt Typhoon hackers backdoor telcos with new GhostSpider malware

November 25, 2024 at 11:14AM The Chinese state-sponsored hacking group Salt Typhoon is using a new “GhostSpider” backdoor to target telecommunication service providers, indicating an escalation in their cyber-attack strategies. ### Meeting Takeaways: 1. **Threat Actor Identified**: The hacking group known as Salt Typhoon, which is state-sponsored by China, is actively conducting cyberattacks. 2. **New … Read more

Palo Alto Networks Confirms New Firewall Zero-Day Exploitation

November 15, 2024 at 05:05AM Palo Alto Networks has confirmed the exploitation of a zero-day vulnerability in its firewall, following investigations into claims of a remote code execution flaw. The announcement highlights ongoing security concerns related to the vulnerability. **Meeting Takeaways:** 1. **Zero-Day Confirmation**: Palo Alto Networks has confirmed that a zero-day vulnerability is being … Read more

CISA warns of critical Palo Alto Networks bug exploited in attacks

November 7, 2024 at 02:05PM CISA has alerted that attackers are exploiting a critical authentication vulnerability in Palo Alto Networks Expedition, a tool used to migrate firewall configurations from various vendors to PAN-OS. **Meeting Takeaways:** 1. **CISA Warning:** The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding a critical vulnerability. 2. **Affected … Read more

Windows infected with backdoored Linux VMs in new phishing attacks

November 4, 2024 at 10:56AM The ‘CRON#TRAP’ phishing campaign targets Windows systems using deceptive emails to install a Linux virtual machine with a backdoor for stealthy corporate network access. Leveraging the legitimate QEMU tool, attackers ensure persistence and communication via a tunneling program, enabling various malicious actions undetected by security measures. ### Meeting Takeaways on … Read more

US says Chinese hackers breached multiple telecom providers

October 28, 2024 at 12:09PM The FBI and CISA reported that Chinese hackers breached U.S. telecommunications providers, prompting investigations and alerts to affected entities. Emphasizing collaboration to mitigate threats, the U.S. government encourages potentially compromised organizations to report incidents. Canada also detected cyber scans by Chinese threat actors targeting government and democratic institutions, urging enhanced … Read more