Odido confirms major breach:
• 688,102 accounts added to HIBP
• ~6M records potentially exposed
• ShinyHunters claims responsibility
• Ransom refused — data leaked in stages
Sensitive financial & identity data compromised.
Full details:
https://www.technadu.com/odido-data-breach-exposes-almost-690000-telecom-customer-accounts/621284/
UNC3886 leveraged ORB infrastructure for stealthy telecom targeting.
Per Cyber Security Agency of Singapore:
• Zero-day firewall compromise
• Rootkit persistence mechanisms
• GOBRAT & TINYSHELL C2 nodes
• ORB-tagged IP clustering in Singapore ASNs
• NetFlow-confirmed router-to-ORB communications
• Pre-positioned reconnaissance
Attribution aligned with assessments from Mandiant linking activity to China-sponsored espionage.
ORB networks blur the line between botnets and residential proxy ecosystems, increasing attribution friction and collateral risk.
Defensive priorities:
• Threat intel enrichment
• Edge device patch enforcement
• ASN anomaly detection
• Zero-trust segmentation
• IoT telemetry visibility
How mature are ORB detection capabilities in your SOC?
Engage below.
Source: https://cyberpress.org/orb-networks-masks-attacks/
Follow @technadu for advanced threat analysis.
#ThreatIntel #UNC3886 #ORBNetworks #IoTSecurity #ZeroDay #C2Infrastructure #NetFlow #TelecomSecurity #BlueTeam #ThreatHunting #APTActivity #CyberOperations #Infosec
Singapore telecommunications were targeted by UNC3886 in a cyber-espionage campaign — telecoms remain high-value gateways for strategic surveillance. Connectivity is power. 📡🕵️♂️ #CyberEspionage #TelecomSecurity
https://www.helpnetsecurity.com/2026/02/10/singapore-telecommunications-unc3886-cyber-espionage/
UNC3886 targeted Singapore’s telecom infrastructure, impacting Singtel, StarHub, M1 & Simba.
Limited access, small technical data exfiltration, no customer data exposed.
What lessons should telecoms take from this?
Reporting indicates a prolonged telecom-focused intrusion campaign may have affected mobile communications of UK government aides, with attribution linked by U.S. sources to Salt Typhoon.
The case reinforces concerns around persistent access, metadata exposure, and call interception - particularly where legacy telecom systems intersect with modern threat actors.
From a defensive standpoint, where should governments prioritize: network hardening, endpoint security, or telecom architecture redesign?
Source: https://cybernews.com/cyber-war/salt-typhoon-hacked-phones-british-prime-ministers/
Join the discussion and follow @technadu for responsible threat reporting.
#ThreatIntelligence #TelecomSecurity #CyberEspionage #InfoSec #TechNadu
China-linked hackers breached telecoms via edge device exploits — attacking the network’s perimeter where visibility is weakest. Edge security is now frontline defense. 📡⚠️ #TelecomSecurity #EdgeSecurity
Brightspeed has acknowledged an ongoing investigation into alleged unauthorized access following claims made by a known threat group.
The case underscores the importance of evidence validation, controlled disclosures, and coordinated response when dealing with public claims of data exfiltration - especially in large telecom environments.
What best practices should guide organizations during claim-driven incident response?
Contribute your perspective and follow @technadu for objective infosec coverage.
#IncidentResponse #ThreatIntel #TelecomSecurity #CyberInvestigations #Infosec #DataProtection
KT femtocell security failures allowed device cloning, SMS interception, and $169K in fraud. South Korean police arrested 5 suspects; more warrants issued.
KT Telecom’s femtocell security failure exposes network weaknesses at the edge — small cells, big risk. Telco security must cover every layer. 📡⚠️ #TelecomSecurity #OTSecurity
https://www.theregister.com/2025/12/30/kt_telecom_femtocell_security_fail/
Two former Cisco Networking Academy students have been linked to the Salt Typhoon campaign, which has compromised 80+ global telecom providers. Investigators say the attackers used technical skills learned directly from Cisco’s curriculum to target IOS and ASA devices.
This case reignites debate over whether corporate training programs in politically tense regions may inadvertently strengthen future threat actors.
Source: https://cybersecuritynews.com/chinese-hackers-attacking-cisco-devices/
Curious how the community views this risk.
Follow TechNadu for more verified cybersecurity reporting.
#CyberSecurity #Infosec #CiscoSecurity #ThreatIntel #SaltTyphoon #TelecomSecurity #SecurityResearch
A medium confidence data breach has targeted a Dutch telecom company, KPN N.V. 🇳🇱 in the Netherlands, within the Network & Telecommunications sector. #DataBreach #TelecomSecurity #CyberThreat
DoT has clarified that the Telecom Cyber Security (TCS) Amendment Rules 2025 remain active, despite a duplicate Gazette publication being withdrawn.
The updates introduce MNV-based identity validation, enhanced IMEI verification for resold devices, and tighter coordination with TIUEs handling telecom identifiers - all with data-protection guardrails.
Thoughts from the security community on the practical impact?
Follow @technadu for more vendor-neutral policy and infosec reporting.
#infosec #cybersecurity #telecomsecurity #DoT #DigitalIndia #fraudprevention #policy
High confidence initial access attempt detected targeting Poland 🇵🇱 and its National Institute of Telecommunications in the Network & Telecommunications sector. #CyberThreats #TelecomSecurity #ThreatIntel
High confidence initial access activity detected targeting the national institute of telecommunications in Poland 🇵🇱. The sector involved is Network & Telecommunications. #CyberThreat #Poland #TelecomSecurity
The FCC has reversed a telecom security measure originally introduced after the Salt Typhoon intrusions.
Supporters cite authority and flexibility concerns; critics warn the shift may weaken protections around lawful intercept systems - longstanding targets of sophisticated threat actors.
💬 Thoughts on whether CALEA needs a modernized, standards-based framework?
👍 Follow @technadu for more infosec insights.
#Infosec #FCC #TelecomSecurity #CALEA #SaltTyphoon #Cybersecurity #CriticalInfrastructure #ThreatIntel #DigitalSafety
Ribbon Communications was breached by nation-state hackers who lurked undetected for months—revealing just how deep and stealthy modern cyber espionage can be. How vulnerable is our digital infrastructure?
#nationstateattack
#cyberespionage
#telecomsecurity
#cyberthreats
#ribboncommunications
📞 Caller ID spoofing is now industrialized.
Europol urges a unified European framework to stop “spoofing-as-a-service” kits enabling large-scale impersonation scams.
Losses exceed €850M annually, with law enforcement calling for cross-border cooperation and technical standards to trace calls.
Can telecoms realistically close this gap - or do we need new protocols at the network level?
💬 Share your take & follow @technadu for more global cyber policy coverage.
#CyberSecurity #Europol #CallerIDSpoofing #TelecomSecurity #ThreatIntelligence #NetworkDefense #CyberPolicy #InfoSec
A global scam network renting out tens of thousands of phone numbers—Europol’s SIMCARTEL bust uncovered glaring telecom vulnerabilities and sparked international teamwork against cybercrime. How will this change our digital world?
#cybercrime
#europol
#telecomsecurity
#publicprivatepartnership
#infosec
#simbox
#cybersecurity
#lawenforcement
#forensicanalysis
KT assures markets that no SIM key data was compromised, eliminating concerns over cloned phones and reinforcing confidence in telecom security.
#YonhapInfomax #KT #SIMKey #DataLeak #ClonedPhones #TelecomSecurity #Economics #FinancialMarkets #Banking #Securities #Bonds #StockMarket
https://en.infomaxai.com/news/articleView.html?idxno=82400
Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities
From weak authentication to misconfigured core functions, 5G deployments keep revealing new ways attackers can break into critical infrastructure.
Join our 5G Penetration Tester El Mehdi Regragui as he shares exclusive findings from P1 Security’s pentest activities, including:
✔ Real-world vulnerabilities in 5G networks
✔ Lessons learned from offensive security engagements
✔ Key takeaways for operators and vendors to strengthen defenses
Register here: https://watch.getcontrast.io/register/p1-security-top-5g-security-vulnerabilities-insights-from-p1-security-pentest-activities
