Cybercriminals are using insiders to gain access to telecommunications networks and subscriber data, according to an intelligence report from cybersecurity company, Kaspersky Lab.
In addition to targeting insiders, these criminals are also recruiting disillusioned employees through underground channels and blackmailing staff of telecoms companies using compromising information gathered from open sources, Kaspersky said in its report detailing security threats facing the telecoms industry.
According to the authors of the report “telecommunications providers are a top target for cyber-attacks. They operate and manage the world’s networks, voice and data transmissions and store vast amounts of sensitive data, and this makes them a highly attractive target for cyber-criminals in search of financial gain, nation-state sponsored actors launching targeted attacks and their competitors.”
[quote font=”georgia” font_size=”22″ font_style=”italic” align=”left” arrow=”yes”]In addition to targeting insiders, these criminals are also recruiting disillusioned employees through underground channels and blackmailing staff of telecoms companies using compromising information gathered from open sources, Kaspersky said in its report detailing security threats facing the telecoms industry.[/quote]Explaining further, Kaspersky says that cyber-criminals often use insiders as part of their malicious ‘toolset,’ in order to help them breach the perimeter of a telecommunications company and perpetrate their crimes, noting that “28 percent of all cyber-attacks and 38 percent of targeted attacks now involve malicious activity by insiders.”
According to Kaspersky Lab researchers, if an attack on a cellular service provider is planned, criminals will seek out employees who can provide fast track access to subscriber and company data or SIM card duplication/illegal reissuing. If the target is an Internet service provider, the attackers will try to identify the employees who can enable network mapping and man-in-the-middle attacks.
In order to protect their organisation from insider threats, Kaspersky Lab is providing telecoms companies to take the underlisted measures:
- Educate your staff about responsible cyber-security behavior and the dangers to look out for and introduce robust policies about the use of corporate email addresses.
- Use threat intelligence services to understand why cyber-criminals might be looking at your company and to find out if someone is offering an insider “service” in your organization.
- Restrict access to the most sensitive information and systems.
- Do a regular security audits of the company’s IT infrastructure.