Vodafone Portugal Has Been Hacked

Uploaded on 2022-02-19 in TECHNOLOGY--Hackers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

A “deliberate and malicious” cyber attack targeting Vodafone Portugal knocked mobile networks offline across the country recently. The incident, which started on Monday evening February 7th, suspended 4G and 5G networks for customers, as well as digital TV and SMS services.

Vodafone said it has seen “no evidence” that customer data has been accessed or compromised due to the attack. Vodafone Portugal is slowly working to recover services used by millions of people and businesses in that country, including those for ambulances and other emergency services.

Vodafone Portugal, a subsidiary of UK-based Vodafone Group with 4.3 million cellphone subscribers and 3.4 million fiber subscribers, said in a statement that the attack took down the subsidiary's 4G and 5G networks and halted fixed voice, television, SMS, and voice and digital answering services.

"[It was] a targeted attack on the network, with the purpose, surely voluntary, intentional to leave our customers without any service," Vodafone Portugal CEO Mário Vaz said at a news conference, and Portuguese news site Lusa.

"The aim of this attack was clearly to make our network unavailable and with a level of severity to make the level of services as difficult as possible."

The attempt largely succeeded. Millions of customers were unable to make voice calls, send text messages, use the Internet, or access cable TV, Lusa and other local news outlets reported. The operator of the country's Multibanco ATM network said that the attack caused "some occasional instability" in its services.

Other businesses and public services were also affected, including ambulance operators, fire departments, and hospitals.“We have already recovered mobile voice services and mobile data services are available exclusively on the 3G network in almost the entire country but, unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services,” the Vodafone said in a statement.

Vodafone Portugal was able to restore 3G voice and data services for most of the country, but many of the remaining affected services continued to struggle. Restoration of services is being prioritised for emergency services.

"Unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services," company officials wrote in Tuesday's statement. The recovery process "involves multiple national and international teams and external partners," they added.

Vaz said the company hadn't received any ransom demand that would indicate it was hit by a ransomware attack. The CEO also said he had no indications the attackers had accessed subscriber information or other sensitive data. Specifics of the attack remain unknown.

The attack comes a month after the websites of two of Portugal's biggest news outlets, Impresa and later COFINA, were hacked by a ransomware group calling itself Lapsus$. As of the time this post went live, the group hadn't taken credit for the Vodafone outage.

Vodafone.pt:     Ars Technica:   The Record:    Portswigger

You Might Also Read: 

Vodafone Using Google Cloud To Retain Customers:

 

« Military Operating Systems Bring AI To The Battlefield
California College Ransomware Attack »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CERT.BY

CERT.BY

The National Computer Emergency Response Team of the Republic of Belarus.

Kualitatem

Kualitatem

Kualitatem Inc. is an independent software testing and information systems auditing company

Optimum Insurance

Optimum Insurance

Optimum's Cyber Risk & Data Protection Insurance policies are designed to protect against cyber exposures that arise when a company’s data and customer information is breached or stolen.

ISACA Conferences

ISACA Conferences

ISACA is dedicated to offering the most dynamic and inclusive conferences to keep you abreast of the latest advances in IT and Information Security.

Silent Breach

Silent Breach

Silent Breach specializes in network security and digital asset protection. Services include Pentesting, Security Assessments, Incident Detection & Response, Governance Risk & Compliance.

Custodio Technologies

Custodio Technologies

Custodio Technologies was established as a Singaporean R&D Centre of Israel Aerospace Industries (IAI) in order to spearhead R&D activities in the field of cyber early warning.

Netrix

Netrix

Netrix is a Mexican company specialized in IT Security, with more than 18 years of experience in Managed Services, Professional Services and Turnkey Solutions related to Security.

OneTrust

OneTrust

OneTrust is the largest and most widely used technology platform to operationalize privacy, security and third-party risk management.

ETSI

ETSI

ETSI is a European Standards Organization dealing with telecommunications, broadcasting and other electronic communications networks and services including cybersecurity.

KBR

KBR

To help governments and other agencies to combat cyber threats, KBR is safeguarding their most valuable systems with sophisticated tools, hardware and training.

OpSec Security

OpSec Security

OpSec Online is the only brand protection solution that spans all channels so your brands are protected no matter what digital venue the criminals target.

Pixm

Pixm

Pixm’s computer vision based approach offers a truly unique and effective means to protect organizations from web-based phishing attacks.

KrCERT/CC

KrCERT/CC

KrCERT/CC is the National Computer Emergency Response Team in Korea.

CACI International

CACI International

CACI is at the forefront of developing and delivering technological breakthroughs that transform and optimize government operations.

Beyon Cyber

Beyon Cyber

Beyon Cyber offer a complete portfolio of advanced solutions & services for cyber security in Bahrain.

CloudGuard

CloudGuard

CloudGuard is an AI-driven XDR platform that helps organisations to proactively detect and automatically remediate threats in real-time.