An ambitious group of suspected state-backed hackers has been burrowing into telecoms to spy on high-profile targets across the world, a US cybersecurity firm said in a report published on Tuesday.
Boston-based Cybereason said the tactic gave hackers sweeping access to the targets’ call records, location data and device information — effectively turning the targets’ telecom against them.
Because customers were not directly targeted, they might never discover that their every movement was being monitored by a hostile power, Cybereason chief executive Lior Div said.
The hackers have turned the affected telecoms into “a global surveillance system,” Div said in a telephone interview. “Those individuals don’t know they were hacked — because they weren’t.”
Div, who presented his findings at the Cyber Week conference in Tel Aviv, Israel, provided scant details about who was targeted in the hack.
Cybereason had been called in to help an unidentified telecom last year and discovered that the hackers had broken into the firm’s billing server, where call records are logged, he said.
The hackers were using their access to extract the data of “around 20” customers, Div said.
Who those people were he declined to say, describing them as mainly coming from the worlds of politics and the military.
He said the information was so sensitive that he would not provide even the vaguest idea of where they or the telecom were located.
“I’m not even going to share the continent,” he said.
Cybereason said the compromise of its customer eventually led it to about 10 other firms that had been hit in a similar way, with hackers stealing data in 100 gigabyte chunks.
Div said that, in some cases, the hackers even appeared to be tracking non-phone devices, such as vehicles or smartwatches.
Cybereason said that it was in the process of briefing some of the world’s largest telecoms on the development.
The GSM Association, a group that represents mobile operators worldwide, said in an e-mail that it was monitoring the situation.
Who might be behind such hacking campaigns is often a fraught question in a world full of digital false flags.
Cybereason said all the signs pointed to APT10 — the nickname often applied to a notorious cyberespionage group that US authorities and digital security experts have tied to the Chinese government, but Div said that the clues they found were so obvious that he and his team sometimes wondered whether they might have been left on purpose.
“I thought: ‘Hey, just a second, maybe it’s somebody who wants to blame APT10,’” he said.
Chinese authorities routinely deny responsibility for hacking operations. The Chinese embassy in London did not immediately return a request seeking comment.
Div said that it was unclear whether the ultimate targets of the espionage operation were warned, saying that Cybereason had left it to the telecom to notify its customers.
Div added that he had been in touch with “a handful” of law enforcement agencies about the matter, although he did not say which ones.
INVESTIGATION: The case is the latest instance of a DPP figure being implicated in an espionage network accused of allegedly leaking information to Chinese intelligence Democratic Progressive Party (DPP) member Ho Jen-chieh (何仁傑) was detained and held incommunicado yesterday on suspicion of spying for China during his tenure as assistant to then-minister of foreign affairs Joseph Wu (吳釗燮). The Taipei District Prosecutors’ Office said Ho was implicated during its investigation into alleged spying activities by former Presidential Office consultant Wu Shang-yu (吳尚雨). Prosecutors said there is reason to believe Ho breached the National Security Act (國家安全法) by leaking classified Ministry of Foreign Affairs information to Chinese intelligence. Following interrogation, prosecutors petitioned the Taipei District Court to detain Ho, citing concerns over potential collusion or tampering of evidence. The
‘FORM OF PROTEST’: The German Institute Taipei said it was ‘shocked’ to see Nazi symbolism used in connection with political aims as it condemned the incident Sung Chien-liang (宋建樑), who led efforts to recall Democratic Progressive Party (DPP) Legislator Lee Kun-cheng (李坤城), was released on bail of NT$80,000 yesterday amid an outcry over a Nazi armband he wore to questioning the night before. Sung arrived at the New Taipei City District Prosecutors’ Office for questioning in a recall petition forgery case on Tuesday night wearing a red armband bearing a swastika, carrying a copy of Adolf Hitler’s Mein Kampf and giving a Nazi salute. Sung left the building at 1:15am without the armband and apparently covering the book with a coat. This is a serious international scandal and Chinese
Seventy percent of middle and elementary schools now conduct English classes entirely in English, the Ministry of Education said, as it encourages schools nationwide to adopt this practice Minister of Education (MOE) Cheng Ying-yao (鄭英耀) is scheduled to present a report on the government’s bilingual education policy to the Legislative Yuan’s Education and Culture Committee today. The report would outline strategies aimed at expanding access to education, reducing regional disparities and improving talent cultivation. Implementation of bilingual education policies has varied across local governments, occasionally drawing public criticism. For example, some schools have required teachers of non-English subjects to pass English proficiency
TRADE: The premier pledged safeguards on ‘Made in Taiwan’ labeling, anti-dumping measures and stricter export controls to strengthen its position in trade talks Products labeled “made in Taiwan” must be genuinely made in Taiwan, Premier Cho Jung-tai (卓榮泰) said yesterday, vowing to enforce strict safeguards against “origin laundering” and initiate anti-dumping investigations to prevent China dumping its products in Taiwan. Cho made the remarks in a discussion session with representatives from industries in Kaohsiung. In response to the US government’s recent announcement of “reciprocal” tariffs on its trading partners, President William Lai (賴清德) and Cho last week began a series of consultations with industry leaders nationwide to gather feedback and address concerns. Taiwanese and US officials held a videoconference on Friday evening to discuss the
RSS