New Zealand Warns Of Impending Mass Hacking Operation

Uploaded on 2024-12-09 in TECHNOLOGY--Hackers, GOVERNMENT-National, FREE TO VIEW

New Zealand’s national cyber security agency (NCSC-NZ)  is warning about a mass hacking operation underway and perpetrated by the Chinese state-sponsored Salt Typhoon hacking group. This operation is similar in scope to the recent attack on US telecoms services, which succeeded in listening  to telephone conversations, intercepting text messages and stealing user data.

The NCSC-NZ has published its advisory following detailed consultation with US cyber security agencies, following their recent warning that  Salt Typhoon has penetrated leading telecoms and broadband operation across the USA.

"This advisory details the best protection against a People’s Republic of China… that has compromised networks of major global telecommunications providers... New Zealand organisations operate similar networks to our international partners so we encourage New Zealand telecommunications and other organisations with on-premises enterprise equipment to apply the best practices outlined in this guide."

The US exploit has resulted has generated a high level of concern following classified briefings to the US President Joe Biden and Senators by the security agencies. An unnamed US  official told reporters that, "We do not believe it's every cell phone in the country, but we believe it's potentially a large number of individuals that the Chinese government was focused on." 

The leading US mobile operator Verizon said it became aware several weeks ago that a "highly sophisticated" attack had got into its networks. According to  US Senator Rick Scott, who attended the Presidential briefing, "They have not told us why they didn't catch it; what they could have done to prevent it,"

The NCSC-NZ  advisory is the latest of several such warnings  about cyber attacks against New Zealand's infrastructure and institutions which  the government has blamed on  China.

NCSC-NZ   |   GCSB   |   RNZ   |   CISA   |   New Zealand Govt.   |    Washington Post   

Image: Astrid Querubin

You Might Also Read: 

New Zealand Health Service Under Attack

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« TikTok Will Be Banned In The USA
The Critical Priorities For CIOs In 2025 »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NICE Systems

NICE Systems

NICE Systems provide software solutions to ensure compliance, fight financial crime, and safeguard people and assets.

Hodgson Russ

Hodgson Russ

Hodgson Russ is a US business law firm. Practice areas include Privacy, Data Breach & Cybersecurity.

OneSpan

OneSpan

OneSpan (formerly Vasco Data Security) is a global leader in digital identity security, transaction security and business productivity.

Information and Communication Technology Authority (ICT Authority) - Kenya

Information and Communication Technology Authority (ICT Authority) - Kenya

The ICT Authority is responsible for enforcing ICT standards in Government and ensuring information security.

authUSB

authUSB

authUSB Safe Door is a tool that provides secure access to the content of USB devices that circulate in organizations.

Digital Law

Digital Law

Digital Law is the only UK law firm to specialise solely in online, data and cyber law.

Cyfirma

Cyfirma

CYFIRMA offers Cyber threat visibility and intelligence suite and services aimed at keeping your organization’s cybersecurity posture up-to-date.

Archivo

Archivo

Archivo is a value added reseller focused on Disaster Recovery as a Service (DRaaS), backup, hyper-convergence, hybrid storage and Cyber security.

Space ISAC

Space ISAC

Space ISAC is the only all-threats security information source for the public and private space sector.

Amidas Hong Kong

Amidas Hong Kong

Amidas is your trusted companion on the road to Digital Transformation. We provide a full range of Information Technology Solutions and Professional Services to Enterprise customers.

Mailinblack

Mailinblack

Mailinblack protects your organisation against email threats with an innovative solution that meets your security requirements.

SGTech

SGTech

SGTech is the leading trade association for Singapore's tech industry, offering focused support and development to both strategic and emerging sectors in the industry.

Vigilant Ops

Vigilant Ops

Vigilant Ops is a leader in Software Bill of Materials (SBOM) Automation. A proactive approach to cybersecurity with continuous vulnerability monitoring.

Kong

Kong

Kong - powering the API world. Increase developer productivity, security, and performance at scale with the unified platform for API management, service mesh, and ingress controller.

CyberNut

CyberNut

CyberNut are a security awareness training solution built exclusively for schools.

Conifers.ai

Conifers.ai

Empower your existing SecOps team with the strength of AI - achieve SOC excellence with Conifers CognitiveSOC.