New Zealand Warns Of Impending Mass Hacking Operation

Uploaded on 2024-12-09 in TECHNOLOGY--Hackers, GOVERNMENT-National, FREE TO VIEW

New Zealand’s national cyber security agency (NCSC-NZ)  is warning about a mass hacking operation underway and perpetrated by the Chinese state-sponsored Salt Typhoon hacking group. This operation is similar in scope to the recent attack on US telecoms services, which succeeded in listening  to telephone conversations, intercepting text messages and stealing user data.

The NCSC-NZ has published its advisory following detailed consultation with US cyber security agencies, following their recent warning that  Salt Typhoon has penetrated leading telecoms and broadband operation across the USA.

"This advisory details the best protection against a People’s Republic of China… that has compromised networks of major global telecommunications providers... New Zealand organisations operate similar networks to our international partners so we encourage New Zealand telecommunications and other organisations with on-premises enterprise equipment to apply the best practices outlined in this guide."

The US exploit has resulted has generated a high level of concern following classified briefings to the US President Joe Biden and Senators by the security agencies. An unnamed US  official told reporters that, "We do not believe it's every cell phone in the country, but we believe it's potentially a large number of individuals that the Chinese government was focused on." 

The leading US mobile operator Verizon said it became aware several weeks ago that a "highly sophisticated" attack had got into its networks. According to  US Senator Rick Scott, who attended the Presidential briefing, "They have not told us why they didn't catch it; what they could have done to prevent it,"

The NCSC-NZ  advisory is the latest of several such warnings  about cyber attacks against New Zealand's infrastructure and institutions which  the government has blamed on  China.

NCSC-NZ   |   GCSB   |   RNZ   |   CISA   |   New Zealand Govt.   |    Washington Post   

Image: Astrid Querubin

You Might Also Read: 

New Zealand Health Service Under Attack

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« TikTok Will Be Banned In The USA
The Critical Priorities For CIOs In 2025 »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

JumpCloud

JumpCloud

JumpCloud's Directory-as-a-Service (DaaS) is the single point of authority to authenticate, authorize, and manage the identities of a business’s employees and the systems and IT resources they need.

Spanish National Cybersecurity Institute (INCIBE)

Spanish National Cybersecurity Institute (INCIBE)

INCIBE undertakes research, service delivery and coordination for building cybersecurity at the national and international levels.

SecuTech Solutions

SecuTech Solutions

SecuTech is a global leader in providing strong authentication and software licensing management solutions.

Source Defense

Source Defense

Source Defense provides websites with the first ever prevention technology for attacks of third-party origin.

VivoSecurity

VivoSecurity

VivoSecurity is a pioneer in cyber risk quantification based on data science. Our products and services help organizations achieve optimal information security and GRC programs.

CyberWarrior

CyberWarrior

CyberWarrior deliver training and consulting for some of the world’s top brands and also partner with national systems integrators to augment their teams with our expertise.

Lepide

Lepide

LepideAuditor is a powerful Data Security Platform that enables you to reduce risk, prevent data breaches and prove regulatory compliance.

SOOHO

SOOHO

SOOHO helps to detect security vulnerabilities earlier. Our blockchain security platform audits from smart contracts to on-chain transactions.

Security Alliance

Security Alliance

Security Alliance provide bespoke cyber intelligence consulting and research services.

PacketViper

PacketViper

PacketViper’s Deception360 actively defends networks with deception-based threat detection and automated response to both external and internal cyber threats.

IriusRisk

IriusRisk

IriusRisk is an open Threat Modeling platform that automates and supports creating threat models at design time.

GoPro Consultants

GoPro Consultants

GoPro Consultants is an IT Consultancy and IT Managed services provider Globally with immeasurable expertise of IT professionals in Hardware/Support & Consultancy and Project Planning.

Fortreum

Fortreum

Fortreum aim to simplify cybersecurity in the marketplace to accelerate your business outcomes.

Crispmind

Crispmind

Crispmind creates innovative solutions to some of today’s most challenging technology problems.

Innov8tif

Innov8tif

Innov8tif is an AI company specialised in providing ID assurance solutions — helping digital businesses to prevent frauds by verifying and authenticating customers identity.

Benchmark IT Services (BITS)

Benchmark IT Services (BITS)

BITS is a leading cyber security company in Australia. Our certified professionals work with you to keep your data assets safe and secure.