Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cybercriminals Select Insiders To Attack Telecom Providers (helpnetsecurity.com)

Posted by EditorDavid on from the job-security dept.

An anonymous reader quotes a report from Help Net Security: Cybercriminals are using insiders to gain access to telecommunications networks and subscriber data, according to Kaspersky Lab. In addition, these criminals are also recruiting disillusioned employees through underground channels and blackmailing staff using compromising information gathered from open sources...

According to Kaspersky Lab researchers, if an attack on a cellular service provider is planned, criminals will seek out employees who can provide fast track access to subscriber and company data or SIM card duplication/illegal reissuing. If the target is an Internet service provider, the attackers will try to identify the employees who can enable network mapping and man-in-the-middle attacks.

24 comments

  1. Not surprising by Anonymous Coward · · Score: 1

    This is not surprising given the industry's constant attack on employee satisfaction. Offshoring, outsourcing, cutting hours and benefits, crappy working conditions. Inside-out security begins with not screwing people over. The companies have shit in their own bed.

    1. Re: Not surprising by Anonymous Coward · · Score: 0

      I'm sure the industry response will call for more corporate powers to identify and remove problem employees. Shadowrun here we come.

  2. surprize by Anonymous Coward · · Score: 0

    How is it that I'm not surprised?

  3. Our employees ... by PPH · · Score: 1

    ... are fully gruntled for your protection.

    --
    Have gnu, will travel.
  4. Social engineering - the next new tech frontier? by jenningsthecat · · Score: 1

    Yes, I know that what we now call 'social engineering' has been around for as long as humans existed, and probably longer. But when I say "new tech frontier", I mean the marriage of the scientific method, technological processes, and technologically-gathered data, with more scientifically-rigorous studies and experiments in sociology, psychology, neurology, and biology.

    Criminals are now systematically, and probably even experimentally, exploiting employees' psychological and social traits in combination with various technical vulnerabilities. The companies being attacked will feel they have no choice but to respond with their own research and experiments in the area of vetting, monitoring, influencing, and outright brainwashing their employees, (not to mention both prescribing and proscribing certain actions and behaviours), on a 24/7 basis. There will be a lot of science applied to this kind of problem; we're seeing some of it already with things like the Predictive Policing program in Chicago.

    George Orwell's work has often been mentioned here on Slashdot, and 1984 was in many ways an eerily prescient work. But if current trends such as those I've outlined above play out as I imagine, we may end up with a less metaphorical, more literal version of Orwell's dystopia.

    --
    'The Economy' is a giant Ponzi scheme whose most pitiable suckers are the youngest among us and the yet-unborn.
  5. EditorDavid by Anonymous Coward · · Score: 0

    Does anyone actually think EditorDavid does a good job as an editor? With articles like this, I sure as hell don't.

    1. Re:EditorDavid by Anonymous Coward · · Score: 0

      Which one can you turn to get proper UTF-8 support implemented?

  6. OutSourcing IT by oldgraybeard · · Score: 1

    This is interesting when you consider the companies out sourcing their IT. So that they don't even know who has the keys to their infrastructure ;)
    I can see the CEO and exec's disclaimers now, "Hey it wasn't our fault, We had nothing to do with it!" while pointing fingers ;)

  7. It's silly to think that... by BringsApples · · Score: 1

    ...there are people out there that are just 'hackers', without ever having worked quite extensively in the same environments that they hack up. To think that there are 'hackers' with tons of know-how, but no real-world experience seems naive. Of course, I'm not saying that there aren't people that 'hack at' systems, surely they do, all fucking day long. But they generally get luck here and there, and the rest of the time they are kept at bay (often by their own short-tempered childishness).

    This is the same reason why 'Edward Snowden' is known today, and not some malicious 'hacker'.

    --
    Politics; n. : A religion whereby man is god.
    1. Re:It's silly to think that... by Archtech · · Score: 2

      Throughout the later 1990s I gave talks about software security and predicted exactly this. The vast majority of "hackers" (i.e. attackers) in those days were just doing it for fun, to prove themselves, to impress their friends, or whatever. I always ended my talks by warning the audience that this "Garden of Eden" period wouldn't last. Given the large numbers of serious, dedicated criminals out there - not to mention terrorists and national aggressors - it would only be a matter of time before the techniques that had already been demonstrated without the infliction of much harm would be adopted by REAL attackers. And then the suffering would commence, on an industrial scale. Like industrial civilization itself, the Internet is just one enormous fragile target.

      The amazing thing is that it's taken so long.

      --
      I am sure that there are many other solipsists out there.
  8. telecom providers by Anonymous Coward · · Score: 0

    they are the real cybercriminals so nothing of value is lost

  9. Okay thanks for the info! by Anonymous Coward · · Score: 0

    I'll put that on my cybercomputer for later reference.

  10. why is this linked to a blogspam summary by Anonymous Coward · · Score: 0

    https://usa.kaspersky.com/about-us/press-center/press-releases/2016/Cybercriminals_Recruit_Insiders_to_Attack_Telecommunication_Providers

    so why not link to the original source?
    why link to someone else's blogspam summary? ...the source is a company which sells security products to other companies, so the report is hardly unbiased...

    1. Re:why is this linked to a blogspam summary by Hylandr · · Score: 1

      +1

      --
      ~ People that think they are better than anyone else for any reason are the cause of all the strife in the world.
  11. YOU NAIVE CUNTS == FBI ARE THE ONES IN THERE! by Anonymous Coward · · Score: 0

    This story is blame diversion period.

    Nobody is out there trying to go all cybercriminal.

    If they work they don't have the time to care about attacking telecom providers.
    If they are young they don't have the skills. (mom's basements)
    If they are old and know how, they are still working and if this is what they do.. they are US Government or similar. FBI usually.

    FBI Slashdot is out of bullshit that sticks yeah?

  12. Re:Social engineering - the next new tech frontier by Anonymous Coward · · Score: 0

    People have always been the weak link in computer security. Criminals may be looking to compromise someone working at their target but there are people who will do anything for a few dollars with no blackmail required. It is almost a certainty that there are foreign agents embedded in every major US technology firm. I am sure the US has the same assets in any foreign companies.

  13. Thanks to H1Bs by nehumanuscrede · · Score: 2

    It won't even cost that much to bribe an insider.

    A native worker is expensive, but an offshore type who is brought in to replace the expensive folks. . . . not so much.

    Start offering the folks who make $20 / day $50,000 and watch how fast your networks fall.

    1. Re:Thanks to H1Bs by Anonymous Coward · · Score: 0

      Most US help desk workers would give up their credentials for less than $1000 dollars as the positions are to be had under any identity in certain locals, hell there are companies who contract with prisons for front line support. With some cleverness help desk and desk side support folks can cause pure chaos and never be tracked. Network Admins with RW access to infrastructure typically can see enough to figure out the passwords put on B2B and site to site VPN links and leave/see enough holes to be exploited at a time when they are long gone. All network admins worth their paychecks have at one time or another checked back and found stuff left open to them.

      Security is only as strong as your weakest business partners contractor with a VPN account that you gave work to for the lowest price bid. Add that to typical the more important something is to a business the less the needs of security have been addressed in a timely manner. Process control at manufactures, Logisitics at Retailers and ingestion points at information providers.

  14. Total rot by Hognoxious · · Score: 1

    Piffle. Sounds like the something from a Frederick Forsythe/John Le Carré cold-war novel.

    --
    Confucius say, "Find worm in apple - bad. Find half a worm - worse."
  15. Too much work by ubungy · · Score: 1

    I just call after hours and explain that my blt drive just went awol. Not sure what this means but they're usually tripping over themselves to help me with whatever information I need.

  16. Reality by Anonymous Coward · · Score: 0

    ... recruiting disillusioned employees ...

    Did you think getting secrets was like 'Goldeneye' (1995) or 'Charlie's angels' (2000)? Standard practice has always been to bribe or blackmail people for information. It doesn't take a large bribe either, people quickly betray others for revenge, or self-importance and occasionally, for ideology.

  17. Insert free advert for Kaspersky Lab by khz6955 · · Score: 1

    Nothing to read here, moving on ...

  18. Already happened to CenturyLink by Anonymous Coward · · Score: 0

    n/t