You have got to be KDDI-ng – Japanese telco exposes 14.2 million managed email credentials
Five ISPs and plenty of users await their fate
Telcos depend on networks, spectrum, software, and trusted identities, making resilience, availability, privacy, and supply-chain security essential.
Search across headline titles and summaries.
Background for this topic.
Telcos provide mobile, fixed-line, broadband, messaging, and data-transmission services. Their assets include radio access networks, fiber and transport links, core network functions, subscriber and billing systems, customer portals, and management platforms. They depend on power, data centers, timing, interconnection and roaming partners, and complex signaling between networks. Availability and integrity matter for ordinary connectivity and, where supported, emergency calling and other public-safety services.
Security concerns include unauthorized access to network-management systems, weaknesses in signaling such as SS7 or Diameter, compromised subscriber identities or SIM/eSIM processes, and vulnerabilities in virtualized or cloud-hosted network functions. These could enable message interception, fraud, location exposure, or service disruption, but are not inherent to every provider. Useful controls include strict separation of management access, strong authentication, signaling validation and monitoring, timely patching of network equipment and software, supplier assurance, and tested failover. Privacy programs must also protect subscriber data and communications metadata, while incident response should account for dependencies on interconnects and other operators.
Weekly headline count for the current query.
Five ISPs and plenty of users await their fate
It happened at a major US telco in the early 2000s
It happened at a major US telco in the early 2000s
Telco giant says no sensitive data was taken, though names, addresses, phones, and emails are now out there
Silicon often from US, but the kit from APAC and elsewhere America's telco regulator has clarified its ban on foreign-made routers also includes mobile hotspots and domestic routers that use a 5G cellular connection to the internet.…
Company refuses to pay ransom as attackers threaten larger daily dumps The Netherlands' national police is backing Odido's refusal to pay a ransom after ShinyHunters leaked a second round of records belonging to the telco.…
UNC2814 historically targets governments and telcos A China-linked crew found a unique formula for attacking telcos and government orgs across the Americas, Asia, and Africa in its latest round of intrusions. Google's threat intelligence, along with unnamed industry partners, disrupted the gang, which used the Chocolate Factory's own spreadsheet tools as part of its exploits.…
Names, addresses, bank account numbers accessed – but biz insists passwords and call data untouched The Netherlands' largest mobile network operator (MNO) has admitted that a breach of its customer contact system may have affected around 6.2 million people.…
Curious port filtering and traffic patterns suggest advisories weren’t the earliest warning signals sent Telcos likely received advance warning about January's critical Telnet vulnerability before its public disclosure, according to threat intelligence biz GreyNoise.…
Operation Cyber Guardian involved 100-plus staff across government and industry Singapore spent almost a year flushing a suspected China-linked espionage crew out of its telecom networks in what officials describe as the country's largest cyber defense operation to date.…
PLUS: OpenClaw teams with VirusTotal; Crypto kidnappings in France; Critical vulns at SmarterMail; And more Infosec In Brief So-hot-right-now AI assistant OpenClaw, which is very much not secure right now, has teamed up with security scanning service VirusTotal.…
Three major GDPR violations, including a lack of basic security controls, lead to hefty dent in profits The French data protection regulator, CNIL, today issued a collective €42 million ($48.9 million) fine to two French telecom companies for GDPR violations stemming from a data breach.…
One cert, in plaintext, on thousands of devices, led to what looks like years of crime South Korea’s Ministry of Science and ICT has found that local carrier Korea Telecom (KT) deployed thousands of badly secured femtocells, leading to an attack that enabled micropayments fraud and snooping on customers’ communications – maybe for years.…
Crims claim to know which customers are marked 'vulnerable' British telco Brsk is investigating claims that it was attacked by cybercriminals who made off with more than 230,000 files.…
Months after China-linked spies burrowed into US networks, regulator tears up its own response The Federal Communications Commission (FCC) has scrapped a set of telecom cybersecurity rules introduced after the Salt Typhoon espionage campaign, reversing course on measures designed to stop state-backed snoops from slipping back into America's networks.…
Regulator sides with telcos that claimed new cybersecurity duties were too ‘burdensome’ The Federal Communications Commission (FCC) will vote this week on whether to scrap Biden-era cybersecurity rules, enacted after the Salt Typhoon attacks came to light in 2024, that required telecom carriers to adopt basic security controls.…
Regulator reports suggest telco was extorted, but company remains coy as to whether it paid French telco Eurofiber says cybercriminals swiped company data during an attack last week that also affected some internal systems.…
Pentesters confirm key system is safe but core products remain unavailable Brit telco Colt Technology Services says its recovery from an August cyberattack might not be completed until late November.…
Brit limb books just £188M in revenue – down 85% since 2019 Huawei's business in Britain has dwindled in the half-decade since the UK acquiesced to demands from the US to ban the Chinese networking giant from local telco networks.…
Everything a criminal needs for targeted attacks exposed, but telco insists 'no critical data compromised' A significant data theft at Orange Belgium has opened hundreds of thousands of its customers to serious cybersecurity risks.…