A Chinese hacking campaign hacked telecommunications companies, spying on the calls and messages of United States citizens. The hackers stole bulk phone records, indicating where, when, and with whom people were communicating. The content of text messages and calls were generally untouched, but for select groups in the U.S. Government or those otherwise involved in politics, hackers did intercept call and text information. 

Nico Chiaraviglio, Chief Scientist at Zimperium, states, “Although this attack was targeted at the backend of a telco, and not affecting mobile endpoints directly, it highlights the value of targeting data related to mobile devices, which can then be used as a springboard to more targeted attacks.”

The hacking campaign is larger than initially reported, with more than eight telecommunications communications impacted. Kern Smith, Vice President, Americas at Zimperium, remarks, “Telecom networks serve as critical digital highways for personal, corporate, and governmental communications, making them prime targets for sophisticated attackers seeking to exploit backend systems and access highly sensitive data. This breach is further proof of the rise in attacks targeting or seeking access to mobile data, leveraging systemic vulnerabilities that bypass individual endpoint defenses and create cascading risks for devices, apps, and users. To address these multi-layered threats, telco providers must adopt a collaborative approach, leveraging AI-driven, real-time monitoring alongside robust mobile endpoint security to ensure end-to-end protection in an increasingly interconnected world.“