On December 16, 2024, a significant data breach involving Cisco was publicly disclosed, with hackers releasing 2.9GB of sensitive data on Breach Forums, a notorious platform for cybercrime. This leak, attributed to a user known as IntelBroker, is part of a larger dataset totaling 4.5TB that was reportedly left unsecured…
In 2024, a notable increase in cyberattacks targeting U.S. critical infrastructure has been observed, particularly focusing on network devices and software-as-a-service (SaaS) systems. This surge reflects a concerning trend where threat actors exploit vulnerabilities to compromise essential services, thus heightening security risks for businesses and government entities alike. Among the…
Whaling phishing attacks are increasingly targeting C-suite executives and senior leaders with sophisticated strategies. According to the 2024 Verizon Data Breach Investigations Report, a staggering 69% of breaches feature a human element, underscoring phishing as a persistent and dangerous attack vector. These attacks are designed not just to breach security…
Recent correspondence from U.S. senators has revealed critical information regarding the security audits conducted by American telecommunications companies in relation to vulnerabilities in the SS7 protocol—a significant concern in the realm of cybersecurity. According to the senators’ letter, major telecoms have engaged third-party cybersecurity firms to evaluate their systems, yet…
A significant cybersecurity incident has unfolded, revealing that Chinese hackers maintained unauthorized access to a prominent U.S. corporation’s network for a duration exceeding four months. According to findings from Symantec, the attackers infiltrated the company’s systems and likely extracted sensitive data, including emails, indicative of a methodical intelligence-gathering campaign. The…
CISA Issues Guidance Following Salt Typhoon Cyber Attacks on Telecommunications The Cybersecurity and Infrastructure Security Agency (CISA) has released a series of recommendations aimed at bolstering defenses against cyber attacks linked to the Salt Typhoon threat group, which is believed to have infiltrated major global telecommunications providers earlier this year.…
T-Mobile has announced the termination of its relationship with a provider network deemed responsible for a recent security incident involving attempts to breach its systems. The company revealed that while there were efforts by threat actors to access sensitive information, no private data was compromised during these incidents. The recent…
The recent uptick in malicious cyber activity has highlighted critical sectors at risk, particularly in the realm of Critical Infrastructure Security, Cyberwarfare and Nation-State Attacks, and Fraud Management & Cybercrime. National Security Officials Share Intelligence on a Cyberespionage Campaign Mathew J. Schwartz (euroinfosec) • November 25, 2024 Chinese hackers are…
T-Mobile has become the target of a significant cybersecurity breach, linked to an expansive cyber-espionage operation conducted by the state-sponsored hacking group known as Salt Typhoon, based in China. This incident is part of a broader assault that has affected several major telecommunications providers in the United States, including AT&T,…
