An ambitious group of suspected state-backed hackers has been burrowing into telecoms to spy on high-profile targets across the world, a US cybersecurity firm said in a report published on Tuesday.
Boston-based Cybereason said the tactic gave hackers sweeping access to the targets’ call records, location data and device information — effectively turning the targets’ telecom against them.
Because customers were not directly targeted, they might never discover that their every movement was being monitored by a hostile power, Cybereason chief executive Lior Div said.
The hackers have turned the affected telecoms into “a global surveillance system,” Div said in a telephone interview. “Those individuals don’t know they were hacked — because they weren’t.”
Div, who presented his findings at the Cyber Week conference in Tel Aviv, Israel, provided scant details about who was targeted in the hack.
Cybereason had been called in to help an unidentified telecom last year and discovered that the hackers had broken into the firm’s billing server, where call records are logged, he said.
The hackers were using their access to extract the data of “around 20” customers, Div said.
Who those people were he declined to say, describing them as mainly coming from the worlds of politics and the military.
He said the information was so sensitive that he would not provide even the vaguest idea of where they or the telecom were located.
“I’m not even going to share the continent,” he said.
Cybereason said the compromise of its customer eventually led it to about 10 other firms that had been hit in a similar way, with hackers stealing data in 100 gigabyte chunks.
Div said that, in some cases, the hackers even appeared to be tracking non-phone devices, such as vehicles or smartwatches.
Cybereason said that it was in the process of briefing some of the world’s largest telecoms on the development.
The GSM Association, a group that represents mobile operators worldwide, said in an e-mail that it was monitoring the situation.
Who might be behind such hacking campaigns is often a fraught question in a world full of digital false flags.
Cybereason said all the signs pointed to APT10 — the nickname often applied to a notorious cyberespionage group that US authorities and digital security experts have tied to the Chinese government, but Div said that the clues they found were so obvious that he and his team sometimes wondered whether they might have been left on purpose.
“I thought: ‘Hey, just a second, maybe it’s somebody who wants to blame APT10,’” he said.
Chinese authorities routinely deny responsibility for hacking operations. The Chinese embassy in London did not immediately return a request seeking comment.
Div said that it was unclear whether the ultimate targets of the espionage operation were warned, saying that Cybereason had left it to the telecom to notify its customers.
Div added that he had been in touch with “a handful” of law enforcement agencies about the matter, although he did not say which ones.
GEARING UP: An invasion would be difficult and would strain China’s forces, but it has conducted large-scale training supporting an invasion scenario, the report said China increased its military pressure on Taiwan last year and took other steps in preparation for a potential invasion, an annual report published by the US Department of Defense on Wednesday showed. “Throughout 2023, Beijing continued to erode longstanding norms in and around Taiwan by employing a range of pressure tactics against Taiwan,” the report said, which is titled “Military and Security Developments Involving the People’s Republic of China (PRC) 2024.” The Chinese People’s Liberation Army (PLA) “is preparing for a contingency to unify Taiwan with the PRC by force, if perceived as necessary by Beijing, while simultaneously deterring, delaying or denying
PEACEFUL RESOLUTION: A statement issued following a meeting between Australia and Britain reiterated support for Taiwan and opposition to change in the Taiwan Strait Canada should support the peaceful resolution of Taiwan’s destiny according to the will of Taiwanese, Canadian lawmakers said in a resolution marking the second anniversary of that nation’s Indo-Pacific strategy on Monday. The Canadian House of Commons committee on Canada-Chinese relations made the comment as part of 34 recommendations for the new edition of the strategy, adding that Ottawa should back Taiwan’s meaningful participation in international organizations. Canada’s Indo-Pacific Strategy, first published in October 2022, emphasized that the region’s security, trade, human rights, democracy and environmental protection would play a crucial role in shaping Canada’s future. The strategy called for Canada to deepen
TECH CONFERENCE: Input from industry and academic experts can contribute to future policymaking across government agencies, President William Lai said Multifunctional service robots could be the next new area in which Taiwan could play a significant role, given its strengths in chip manufacturing and software design, Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) chairman and chief executive C.C. Wei (魏哲家) said yesterday. “In the past two months, our customers shared a lot of their future plans with me. Artificial intelligence [AI] and AI applications were the most talked about subjects in our conversation,” Wei said in a speech at the National Science and Technology Conference in Taipei. TSMC, the world’s biggest contract chipmaker, counts Nvidia Corp, Advanced Micro Devices Inc, Apple Inc and
LEAP FORWARD: The new tanks are ‘decades more advanced than’ the army’s current fleet and would enable it to compete with China’s tanks, a source said A shipment of 38 US-made M1A2T Abrams tanks — part of a military procurement package from the US — arrived at the Port of Taipei early yesterday. The vehicles are the first batch of 108 tanks and other items that then-US president Donald Trump announced for Taiwan in 2019. The Ministry of National Defense at the time allocated NT$40.5 billion (US$1.25 billion) for the purchase. To accommodate the arrival of the tanks, the port suspended the use of all terminals and storage area machinery from 6pm last night until 7am this morning. The tanks are expected to be deployed at the army’s training
RSS