Vodafone Portugal Has Been Hacked

Uploaded on 2022-02-19 in TECHNOLOGY--Hackers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

A “deliberate and malicious” cyber attack targeting Vodafone Portugal knocked mobile networks offline across the country recently. The incident, which started on Monday evening February 7th, suspended 4G and 5G networks for customers, as well as digital TV and SMS services.

Vodafone said it has seen “no evidence” that customer data has been accessed or compromised due to the attack. Vodafone Portugal is slowly working to recover services used by millions of people and businesses in that country, including those for ambulances and other emergency services.

Vodafone Portugal, a subsidiary of UK-based Vodafone Group with 4.3 million cellphone subscribers and 3.4 million fiber subscribers, said in a statement that the attack took down the subsidiary's 4G and 5G networks and halted fixed voice, television, SMS, and voice and digital answering services.

"[It was] a targeted attack on the network, with the purpose, surely voluntary, intentional to leave our customers without any service," Vodafone Portugal CEO Mário Vaz said at a news conference, and Portuguese news site Lusa.

"The aim of this attack was clearly to make our network unavailable and with a level of severity to make the level of services as difficult as possible."

The attempt largely succeeded. Millions of customers were unable to make voice calls, send text messages, use the Internet, or access cable TV, Lusa and other local news outlets reported. The operator of the country's Multibanco ATM network said that the attack caused "some occasional instability" in its services.

Other businesses and public services were also affected, including ambulance operators, fire departments, and hospitals.“We have already recovered mobile voice services and mobile data services are available exclusively on the 3G network in almost the entire country but, unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services,” the Vodafone said in a statement.

Vodafone Portugal was able to restore 3G voice and data services for most of the country, but many of the remaining affected services continued to struggle. Restoration of services is being prioritised for emergency services.

"Unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services," company officials wrote in Tuesday's statement. The recovery process "involves multiple national and international teams and external partners," they added.

Vaz said the company hadn't received any ransom demand that would indicate it was hit by a ransomware attack. The CEO also said he had no indications the attackers had accessed subscriber information or other sensitive data. Specifics of the attack remain unknown.

The attack comes a month after the websites of two of Portugal's biggest news outlets, Impresa and later COFINA, were hacked by a ransomware group calling itself Lapsus$. As of the time this post went live, the group hadn't taken credit for the Vodafone outage.

Vodafone.pt:     Ars Technica:   The Record:    Portswigger

You Might Also Read: 

Vodafone Using Google Cloud To Retain Customers:

 

« Military Operating Systems Bring AI To The Battlefield
California College Ransomware Attack »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

DCL Search & Select

DCL Search & Select

DCL Search & Selection connect candidates to the best companies in the IT Security, Telco, UC, Outsourcing, ERP, Audit & Control markets.

Cryptomathic

Cryptomathic

Cryptomathic is an expert on commercial crypto - we develop, deliver and support the most secure and efficient off-the-shelf and customised solutions.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Logsign

Logsign

Logsign is a Security Orchestration, Automation and Response (SOAR) platform with next-gen Security Information and Event Management (SIEM) solution.

FTAPI Software

FTAPI Software

FTAPI SecuTransfer is a software solution for end-to-end encrypted data exchange of large and sensitive data with customers and partners.

Ledger

Ledger

Ledger is a leader in security and infrastructure solutions for cryptocurrencies and blockchain applications using its proprietary technology.

Cobalt Iron

Cobalt Iron

Cobalt Iron is a global leader in SaaS-based enterprise backup and data protection technology.

Bloc Ventures

Bloc Ventures

Bloc Ventures is an investment company providing long-term, ‘patient’ equity capital to early stage unquoted deep technology companies.

Kontron

Kontron

Kontron offers a combined portfolio of secure hardware, middleware and services for Internet of Things (IoT) and Industry 4.0 applications.

TWC IT Solutions

TWC IT Solutions

Since 2011, TWC IT Solutions has offered managed IT Support, Cybersecurity, Disaster Recovery, Contact Centre and Business Connectivity services to clients across 24 countries globally.

LoughTec

LoughTec

LoughTec secure, manage and connect IT infrastructure for businesses and organisations throughout the UK and Republic of Ireland.

ProArch

ProArch

ProArch is a global team of multidisciplinary experts in cloud, infrastructure, data analytics, cybersecurity, compliance, and software development.

Systal Technology Solutions

Systal Technology Solutions

Systal is a global managed network and security service and transformation specialist. We help enterprise-level businesses maximise the security and business value of their complex IT infrastructure.

Exiger

Exiger

Exiger is revolutionizing the way corporations, government agencies and banks navigate risk and compliance in their third-parties, supply chains and customers.

Sword Group

Sword Group

Sword is a leader in data insights, digital transformation and technology services with a substantial reputation in complex IT, business projects and mission critical operations.

Hilltop Technologies

Hilltop Technologies

Hilltop Technologies is a cybersecurity company specialized in managed security services and consulting tailored for all sectors from higher education to publicly traded companies.