An ambitious group of suspected state-backed hackers has been burrowing into telecoms to spy on high-profile targets across the world, a US cybersecurity firm said in a report published on Tuesday.
Boston-based Cybereason said the tactic gave hackers sweeping access to the targets’ call records, location data and device information — effectively turning the targets’ telecom against them.
Because customers were not directly targeted, they might never discover that their every movement was being monitored by a hostile power, Cybereason chief executive Lior Div said.
The hackers have turned the affected telecoms into “a global surveillance system,” Div said in a telephone interview. “Those individuals don’t know they were hacked — because they weren’t.”
Div, who presented his findings at the Cyber Week conference in Tel Aviv, Israel, provided scant details about who was targeted in the hack.
Cybereason had been called in to help an unidentified telecom last year and discovered that the hackers had broken into the firm’s billing server, where call records are logged, he said.
The hackers were using their access to extract the data of “around 20” customers, Div said.
Who those people were he declined to say, describing them as mainly coming from the worlds of politics and the military.
He said the information was so sensitive that he would not provide even the vaguest idea of where they or the telecom were located.
“I’m not even going to share the continent,” he said.
Cybereason said the compromise of its customer eventually led it to about 10 other firms that had been hit in a similar way, with hackers stealing data in 100 gigabyte chunks.
Div said that, in some cases, the hackers even appeared to be tracking non-phone devices, such as vehicles or smartwatches.
Cybereason said that it was in the process of briefing some of the world’s largest telecoms on the development.
The GSM Association, a group that represents mobile operators worldwide, said in an e-mail that it was monitoring the situation.
Who might be behind such hacking campaigns is often a fraught question in a world full of digital false flags.
Cybereason said all the signs pointed to APT10 — the nickname often applied to a notorious cyberespionage group that US authorities and digital security experts have tied to the Chinese government, but Div said that the clues they found were so obvious that he and his team sometimes wondered whether they might have been left on purpose.
“I thought: ‘Hey, just a second, maybe it’s somebody who wants to blame APT10,’” he said.
Chinese authorities routinely deny responsibility for hacking operations. The Chinese embassy in London did not immediately return a request seeking comment.
Div said that it was unclear whether the ultimate targets of the espionage operation were warned, saying that Cybereason had left it to the telecom to notify its customers.
Div added that he had been in touch with “a handful” of law enforcement agencies about the matter, although he did not say which ones.
NETWORK-MAPPING PROJECT: The database contains 170 detailed files of Taiwanese politicians and about 23 million records of household registration data in Taiwan China has developed a network-mapping project targeting political figures and parties in Taiwan to monitor public opinion during elections and to craft tailored influence campaigns aimed at dividing Taiwanese society, according to documents leaked by Chinese technology firm GoLaxy (中科天璣). The documents, collected by Taipei-based Doublethink Lab, showed a database was specifically created to gather detailed information on Taiwanese political figures, including their political affiliations, job histories, birthplaces, residences, education, religion and a brief biography about them. Several notable Taiwanese politicians are in the database, including President William Lai (賴清德), former president Tsai Ing-wen (蔡英文), Minister of Foreign Affairs Lin Chia-lung (林佳龍),
RECOGNITION: Former Fijian prime minister Mahendra Chaudhry said that Taiwan’s New Southbound Policy serves as a stabilizing force in the Indo-Pacific region Taiwan can lead the unification of the Chinese people, Nobel Peace Prize laureate and former Polish president Lech Walesa said in Taipei yesterday, adding that as the world order is changing, peaceful discussion would find good solutions, and that the use of force and coercion would always fail. Walesa made the remarks during his keynote address at a luncheon of the Yushan Forum in Taipei, titled “Indo-Pacific Partnership Prospects: Taiwan’s Values, Technology and Resilience,” organized by the Taiwan-Asia Exchange Foundation with the Ministry of Foreign Affairs. Walesa said that he had been at the forefront of a big peaceful revolution and “if
North Korea tested nuclear-capable rocket launchers, state media reported yesterday, a day after Seoul detected the launch of about 10 ballistic missiles. The test comes after South Korean and US forces launched their springtime military drills, due to run until Thursday. North Korean leader Kim Jong-un on Saturday oversaw the testing of the multiple rocket launcher system (MRLS), the Korean Central News Agency (KCNA) said. The test involved 12 600mm-caliber ultra-precision multiple rocket launchers and two artillery companies, it said. Kim said the drill gave Pyongyang’s enemies, within the 420km striking range, a sense of “uneasiness” and “a deep understanding
North Korea yesterday fired about 10 ballistic missiles to the sea toward Japan, the South Korean Joint Chiefs of Staff (JCS) said, days after Pyongyang warned of “terrible consequences” over ongoing South Korea-US military drills. Pyongyang recently dashed hopes of a diplomatic thaw with Seoul, Washington’s security ally, describing its latest peace efforts as a “clumsy, deceptive farce.” Seoul’s military detected “around 10 ballistic missiles launched from the Sunan area in North Korea toward the East Sea [Sea of Japan] at around 1:20pm,” JCS said in a statement, referring to South Korea’s name for the body of water. The missiles
RSS