An ambitious group of suspected state-backed hackers has been burrowing into telecoms to spy on high-profile targets across the world, a US cybersecurity firm said in a report published on Tuesday.
Boston-based Cybereason said the tactic gave hackers sweeping access to the targets’ call records, location data and device information — effectively turning the targets’ telecom against them.
Because customers were not directly targeted, they might never discover that their every movement was being monitored by a hostile power, Cybereason chief executive Lior Div said.
The hackers have turned the affected telecoms into “a global surveillance system,” Div said in a telephone interview. “Those individuals don’t know they were hacked — because they weren’t.”
Div, who presented his findings at the Cyber Week conference in Tel Aviv, Israel, provided scant details about who was targeted in the hack.
Cybereason had been called in to help an unidentified telecom last year and discovered that the hackers had broken into the firm’s billing server, where call records are logged, he said.
The hackers were using their access to extract the data of “around 20” customers, Div said.
Who those people were he declined to say, describing them as mainly coming from the worlds of politics and the military.
He said the information was so sensitive that he would not provide even the vaguest idea of where they or the telecom were located.
“I’m not even going to share the continent,” he said.
Cybereason said the compromise of its customer eventually led it to about 10 other firms that had been hit in a similar way, with hackers stealing data in 100 gigabyte chunks.
Div said that, in some cases, the hackers even appeared to be tracking non-phone devices, such as vehicles or smartwatches.
Cybereason said that it was in the process of briefing some of the world’s largest telecoms on the development.
The GSM Association, a group that represents mobile operators worldwide, said in an e-mail that it was monitoring the situation.
Who might be behind such hacking campaigns is often a fraught question in a world full of digital false flags.
Cybereason said all the signs pointed to APT10 — the nickname often applied to a notorious cyberespionage group that US authorities and digital security experts have tied to the Chinese government, but Div said that the clues they found were so obvious that he and his team sometimes wondered whether they might have been left on purpose.
“I thought: ‘Hey, just a second, maybe it’s somebody who wants to blame APT10,’” he said.
Chinese authorities routinely deny responsibility for hacking operations. The Chinese embassy in London did not immediately return a request seeking comment.
Div said that it was unclear whether the ultimate targets of the espionage operation were warned, saying that Cybereason had left it to the telecom to notify its customers.
Div added that he had been in touch with “a handful” of law enforcement agencies about the matter, although he did not say which ones.
DEFENDING DEMOCRACY: Taiwan shares the same values as those that fought in WWII, and nations must unite to halt the expansion of a new authoritarian bloc, Lai said The government yesterday held a commemoration ceremony for Victory in Europe (V-E) Day, joining the rest of the world for the first time to mark the anniversary of the end of World War II in Europe. Taiwan honoring V-E Day signifies “our growing connections with the international community,” President William Lai (賴清德) said at a reception in Taipei on the 80th anniversary of V-E Day. One of the major lessons of World War II is that “authoritarianism and aggression lead only to slaughter, tragedy and greater inequality,” Lai said. Even more importantly, the war also taught people that “those who cherish peace cannot
STEADFAST FRIEND: The bills encourage increased Taiwan-US engagement and address China’s distortion of UN Resolution 2758 to isolate Taiwan internationally The Presidential Office yesterday thanked the US House of Representatives for unanimously passing two Taiwan-related bills highlighting its solid support for Taiwan’s democracy and global participation, and for deepening bilateral relations. One of the bills, the Taiwan Assurance Implementation Act, requires the US Department of State to periodically review its guidelines for engagement with Taiwan, and report to the US Congress on the guidelines and plans to lift self-imposed limitations on US-Taiwan engagement. The other bill is the Taiwan International Solidarity Act, which clarifies that UN Resolution 2758 does not address the issue of the representation of Taiwan or its people in
The Philippines yesterday criticized a “high-risk” maneuver by a Chinese vessel near the disputed Scarborough Shoal (Huangyan Island, 黃岩島) in a rare incident involving warships from the two navies. The Scarborough Shoal — a triangular chain of reefs and rocks in the contested South China Sea — has been a flash point between the countries since China seized it from the Philippines in 2012. Taiwan also claims the shoal. Monday’s encounter took place approximately 11.8 nautical miles (22km) southeast” of the Scarborough Shoal, the Philippine military said, during ongoing US-Philippine military exercises that Beijing has criticized as destabilizing. “The Chinese frigate BN 554 was
Taiwanese Olympic badminton men’s doubles gold medalist Wang Chi-lin (王齊麟) and his new partner, Chiu Hsiang-chieh (邱相榤), clinched the men’s doubles title at the Yonex Taipei Open yesterday, becoming the second Taiwanese team to win a title in the tournament. Ranked 19th in the world, the Taiwanese duo defeated Kang Min-hyuk and Ki Dong-ju of South Korea 21-18, 21-15 in a pulsating 43-minute final to clinch their first doubles title after teaming up last year. Wang, the men’s doubles gold medalist at the 2020 and 2024 Olympics, partnered with Chiu in August last year after the retirement of his teammate Lee Yang
RSS