Sunday, May 28, 2023
News 21 AV
  • Home
  • Tech News
    Ban predictive policing systems in EU AI Act, says civil society

    Insights on Nordic artificial intelligence strategies

    Unionised contract workers who train Google’s AI win pay rise

    Unionised contract workers who train Google’s AI win pay rise

    Government given until autumn 2023 to create technology roadmap to support net-zero strategy

    Government given until autumn 2023 to create technology roadmap to support net-zero strategy

    Ellison-founded sailing league SailGP plumps for Oracle NetSuite to expand

    Ellison-founded sailing league SailGP plumps for Oracle NetSuite to expand

    Cabinet Office looks to expand public data sharing for digital ID

    Cabinet Office looks to expand public data sharing for digital ID

    A pandemic retail trend that’s here to stay?

    LockBit cartel suspected of Royal Mail cyber attack

    Umbrella firm Parasol confirms ‘malicious activity’ as root cause of ongoing systems outage

    Government accused of leaving umbrella company regulation in limbo by shelving enforcement body

    UK government completes trials of age estimation technology

    UK government completes trials of age estimation technology

    Cyber insurance: The good, the bad and the ugly

    Companies warned to step up cyber security to become ‘insurable’

  • Virtual reality
    How XR Technologies Are Making Design Reviews Immersive | NVIDIA Blog

    How XR Technologies Are Making Design Reviews Immersive | NVIDIA Blog

    Review: PlayStation VR2 is a huge leap that still can't escape its niche

    Review: PlayStation VR2 is a huge leap that still can’t escape its niche

    Meta Quest users can now tap and swipe in VR without controllers

    Meta Quest users can now tap and swipe in VR without controllers

    Former Salesforce exec Bret Taylor is teaming up with Google AR/VR vet Clay Bavor on mystery startup

    Former Salesforce exec Bret Taylor is teaming up with Google AR/VR vet Clay Bavor on mystery startup

    Google’s GV backs SideQuest, an unofficial Meta Quest app store

    Meta’s Reality Labs lost $13.7 billion on VR and AR last year

    Proptech in Review: Investors predict slower growth in 2023

    Proptech in Review: Investors predict slower growth in 2023

    Emperia

    Emperia is helping brands like Bloomingdales build shopping experiences in VR

    Gemba, a corporate VR training platform used by Coca-Cola and Pfizer, raises $18M

    Gemba, a corporate VR training platform used by Coca-Cola and Pfizer, raises $18M

    Microsoft is sunsetting social VR pioneer AltspaceVR

    Microsoft is sunsetting social VR pioneer AltspaceVR

  • Lifestyle
    Hosting a Casino-Themed Party

    How to Play Limbo Gambling Game: A Beginner’s Guide

    sports Asia

    Everything You Need to Know About the 7 Unusual Sports You Can Only See That Is Played in Asia!

    business meeting

    How To Create an Herbal Garden Catering Company

    apple products

    5 Things To Avoid When Trying To Sell Your Apple Products

    women life

    11 Fun Ways to Stay Mentally Sharp in Your Later Years

    sex toys

    What Happens When You Don’t Clean Your Sex Toys Regularly

    Healing Powers of Aromatherapy

    What is A Light Therapy For Seasonal Affective Disorder

    Fuma Extra Vapes

    Fume Extra Vape Review: An In-Depth Look at This Innovative Vaporizer

    Assortment of Stitch activity cards. Activities such as "Art Makers - SoulCollage Workshop', 'Creative Writers Workshop', 'Creative Art Expression Workshop', 'Learning Calligraphy'.

    It’s never too late: Learn new talents with Stitch

  • Beauty
    Water Flosser

    This Bestselling Waterpik Is On Sale Right Now

    Proud To Be Pink Bobbi Brown Gloss Duo

    Proud To Be Pink Bobbi Brown Gloss Duo

    ColourPop x Snitchery Collection Swatches (Eyes & Cheeks)

    ColourPop x Snitchery Collection Swatches (Eyes & Cheeks)

    Image may contain Clothing Apparel Human Person Lingerie and Underwear

    Period Care Ads Are Woefully Lacking in Disability Representation

    mileys new years eve party

    Who Is Maxx Morando? – All About Miley Cyrus’s New Boyfriend

    Dior Cosmic Eyes (359) Eyeshadow Palette

    Dior Holiday 2022 Collection Swatches

    preview for How Emma Stone Became an Oscar-Winning Actress

    Who Is Dave McCary? Meet Emma Stone’s Husband and Baby Girl’s Dad

    Coloured Raine Sunset Chic Eyeshadow Palette Review & Swatches

    Coloured Raine Sunset Chic Eyeshadow Palette Review & Swatches

    Mila Kunis Criticizes Celebs Who Gave Will Smith a Standing Ovation at the Oscars After The Slap

    Mila Kunis Criticizes Celebs Who Gave Will Smith a Standing Ovation at the Oscars After The Slap

  • Health & Fitness
    First They Get Long COVID, Then They Lose Their Health Care

    Depression and Age-Related Macular Degeneration

    86-Year-Old Powerlifter Brian Winslow (60KG) Sets Deadlift Record of 77.5-Kilograms (170.8-Pounds)

    86-Year-Old Powerlifter Brian Winslow (60KG) Sets Deadlift Record of 77.5-Kilograms (170.8-Pounds)

    logo for Fetch

    FDA Approves Drug for Cats With Allergic Skin Disease

    Lee Haney Explains Why He Retired Undefeated After 8 Olympia Titles: "There's Nowhere Else To Go But Down"

    Lee Haney Explains Why He Retired Undefeated After 8 Olympia Titles: “There’s Nowhere Else To Go But Down”

    Logo for WebMD

    HIV Infections Could Spike After Ruling on Affordable Care Act: Experts

    Joe Mackey Crushes a 449-Kilogram (990-Pound) Hack Squat For 5 Reps

    Joe Mackey Crushes a 449-Kilogram (990-Pound) Hack Squat For 5 Reps

    First They Get Long COVID, Then They Lose Their Health Care

    What I Learned About Caring for Someone With AMD

    2023 Clash On The Coast Results — Sumer Johnson and Andrew Clayton Triumphant

    2023 Clash On The Coast Results — Sumer Johnson and Andrew Clayton Triumphant

    First They Get Long COVID, Then They Lose Their Health Care

    Top Health Challenges for Aging Asian Americans

  • Equipment
  • Login
No Result
View All Result
News 21 AV
Home Tech News

LightBasin hackers breach 13 telcos in two years

News 21 AV by News 21 AV
October 20, 2021
in Tech News
0
LightBasin hackers breach 13 telcos in two years
0
SHARES
0
VIEWS
FacebookTwitter


A “highly sophisticated” hacking group called LightBasin has harvested mobile network data from at least 13 telecoms companies in the past two years, according to CrowdStrike researchers.

Related posts

Ban predictive policing systems in EU AI Act, says civil society

Insights on Nordic artificial intelligence strategies

January 14, 2023
Unionised contract workers who train Google’s AI win pay rise

Unionised contract workers who train Google’s AI win pay rise

January 14, 2023

The group, also known as UNC1945, was first revealed by Mandiant researchers in November 2020, who showed the hackers were targeting financial and professional consulting enterprises through compromising their managed service providers (MSPs).

CrowdStrike said the group uses custom tools and “in-depth knowledge” of telecommunication network architecture to harvest data of value to signals intelligence agencies.

Active since at least 2016, LightBasin has moved on to target telcos by establishing implants across Linux and Solaris systems, which run a combination of critical infrastructure for the sector.

While CrowdStrike said at least 13 telcos had been affected by the group’s two-year campaign, none of the firms targeted were named.

“Recent findings highlight this cluster’s extensive knowledge of telecommunications protocols, including the emulation of these protocols to facilitate command and control  and utilising scanning/packet-capture tools to retrieve highly specific information from mobile communication infrastructure, such as subscriber information and call metadata,” said CrowdStrike in a blog.

It said LightBasin is a “highly sophisticated adversary”, and the nature of the data targeted, as well as the range of capabilities shown, is consistent with “a signals intelligence organisation with a need to respond to collection requirements against a diverse set of target environments”.

CrowdStrike senior vice-president Adam Meyers told Reuters that the attackers were able to retrieve specific data unobtrusively, adding: “I’ve never seen this degree of purpose-built tools.”

Although Reuters and other media reports have tied the hackers to China, the CrowdStrike report noted that while the cryptography used by the group does rely on Pinyin phonetic versions of Chinese language characters, “CrowdStrike Intelligence does not assert a nexus between LightBasin and China”.

The report also said LightBasin exercised a strong operational security (opsec) strategy, and that it managed to initially compromise one of the telecoms companies leveraging external DNS (eDNS) servers – part of the General Packet Radio Service (GPRS) network that play a key role in roaming between different mobile operators – to connect to other compromised networks via SSH and through previously established implants.

“LightBasin initially accessed the first eDNS server via SSH from one of the other compromised telecommunications companies, with evidence uncovered indicative of password-spraying attempts using both extremely weak and third-party-focused passwords (eg huawei), potentially helping to facilitate the initial compromise,” it said.

“Subsequently, LightBasin deployed their Slapstick PAM backdoor on the system to siphon credentials to an obfuscated text file. As part of early lateral movement operations to further their access across the network, LightBasin then pivoted to additional systems to set up more Slapstick backdoors.”

It also said LightBasin’s ability to pivot between multiple companies stems form those firms’ roaming agreements, which permit all traffic between these organisations without identifying the protocols that are actually required.

“As such, the key recommendation here is for any telecommunications company to ensure that firewalls responsible for the GPRS network have rules in place to restrict network traffic to only those protocols that are expected, such as DNS or GTP,” said the report, adding that simply restricting network traffic will not solve the issue if a company has already been the victim of an intrusion.

“In this event, CrowdStrike recommends an incident response investigation that includes the review of all partner systems alongside all systems managed by the organisation itself,” it added. “Similarly, if an organisation wishes to determine whether they’ve fallen victim to LightBasin, any compromise assessment must also include a review of all of the aforementioned systems.”

CrowdStrike further recommended that telcos carry out an evaluation of the security controls in place with third-party MSPs, because its investigations commonly reveal a lack of monitoring or security tooling on core network systems.

It said any incident response plan devised by telecoms companies should lay out the MSPs roles and responsibilities, so that firms can acquire forensic artifacts not directly under their own management.



Source link

Tags: breachhackersLightBasintelcosYears
Previous Post

Pimax to Unveil its Next-Gen Tech at Frontier 2021 Event Next Week

Next Post

How To Be Less Reactive and More Proactive

Next Post
How To Be Less Reactive and More Proactive

How To Be Less Reactive and More Proactive

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

RECOMMENDED NEWS

Hydrating Argan Oil Hair Mask and deep conditioner by Arvazallia for dry and damaged hair

These 10 Best Luxe Hair Care Products are Rally Game-Changing!

1 year ago
Paul & Joe Beauty 20th Anniversary Collection

Paul & Joe Beauty 20th Anniversary Collection

1 year ago
unique dining room pendant lights

Modern Chinese Minimalism With Super Stylish Twists

1 year ago
Logo for WebMD

30% of COVID Patients in Study Developed ‘Long COVID’

1 year ago

BROWSE BY CATEGORIES

  • Beauty
  • Equipment
  • Health & Fitness
  • Lifestyle
  • Tech News
  • Virtual reality

BROWSE BY TOPICS

Beauty Equipment Health & Fitness Lifestyle Tech News Virtual reality

POPULAR NEWS

  • The 20 Best Leg Exercises for Size and Strength

    The 20 Best Leg Exercises for Size and Strength

    0 shares
    Share 0 Tweet 0
  • Who Is Dalton Gomez – Meet Ariana Grande’s Husband

    0 shares
    Share 0 Tweet 0
  • 14 Best Sanitary Napkins To Provide Comfort During Periods

    0 shares
    Share 0 Tweet 0
  • 10 Best CD Players in 2021

    0 shares
    Share 0 Tweet 0
  • Why Power Dressing is Important at Workplace For Women

    0 shares
    Share 0 Tweet 0
News 21 AV

We bring you the best of latest news articles with an emphasis. We offers an original take on the latest in Lifestyle, fashion, high tech and health & fitness informations and guides.

Follow us on social media:

Recent News

  • Tick-Borne Powassan Virus Can Kill — How to Protect Yourself
  • Studio Paul Chan references Wes Anderson at Boisson bottle shop in LA
  • Hunter Labrada Deadlifts 265.3 Kilograms (585 Pounds) for 4-Rep PR

Category

  • Beauty
  • Equipment
  • Health & Fitness
  • Lifestyle
  • Tech News
  • Virtual reality

Recent News

Q&A With Ann Partridge, MD, MPH

Swallowed Razors, Magnets, and More: New Advice for Doctors

May 23, 2023
Turn Your First Bowl | Popular Woodworking

Turn Your First Bowl | Popular Woodworking

May 23, 2023
  • Blog
  • Privacy Policy
  • Disclaimer
  • Terms and Conditions
  • Contact us

© 2021 News.21av - Popular News & magazine powred by Get solutions.

No Result
View All Result
  • Home
  • Tech News
  • Virtual reality
  • Lifestyle
  • Beauty
  • Health & Fitness
  • Equipment

© 2021 News.21av - Popular News & magazine powred by Get solutions.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In