Vodafone Portugal Has Been Hacked

Uploaded on 2022-02-19 in TECHNOLOGY--Hackers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

A “deliberate and malicious” cyber attack targeting Vodafone Portugal knocked mobile networks offline across the country recently. The incident, which started on Monday evening February 7th, suspended 4G and 5G networks for customers, as well as digital TV and SMS services.

Vodafone said it has seen “no evidence” that customer data has been accessed or compromised due to the attack. Vodafone Portugal is slowly working to recover services used by millions of people and businesses in that country, including those for ambulances and other emergency services.

Vodafone Portugal, a subsidiary of UK-based Vodafone Group with 4.3 million cellphone subscribers and 3.4 million fiber subscribers, said in a statement that the attack took down the subsidiary's 4G and 5G networks and halted fixed voice, television, SMS, and voice and digital answering services.

"[It was] a targeted attack on the network, with the purpose, surely voluntary, intentional to leave our customers without any service," Vodafone Portugal CEO Mário Vaz said at a news conference, and Portuguese news site Lusa.

"The aim of this attack was clearly to make our network unavailable and with a level of severity to make the level of services as difficult as possible."

The attempt largely succeeded. Millions of customers were unable to make voice calls, send text messages, use the Internet, or access cable TV, Lusa and other local news outlets reported. The operator of the country's Multibanco ATM network said that the attack caused "some occasional instability" in its services.

Other businesses and public services were also affected, including ambulance operators, fire departments, and hospitals.“We have already recovered mobile voice services and mobile data services are available exclusively on the 3G network in almost the entire country but, unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services,” the Vodafone said in a statement.

Vodafone Portugal was able to restore 3G voice and data services for most of the country, but many of the remaining affected services continued to struggle. Restoration of services is being prioritised for emergency services.

"Unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services," company officials wrote in Tuesday's statement. The recovery process "involves multiple national and international teams and external partners," they added.

Vaz said the company hadn't received any ransom demand that would indicate it was hit by a ransomware attack. The CEO also said he had no indications the attackers had accessed subscriber information or other sensitive data. Specifics of the attack remain unknown.

The attack comes a month after the websites of two of Portugal's biggest news outlets, Impresa and later COFINA, were hacked by a ransomware group calling itself Lapsus$. As of the time this post went live, the group hadn't taken credit for the Vodafone outage.

Vodafone.pt:     Ars Technica:   The Record:    Portswigger

You Might Also Read: 

Vodafone Using Google Cloud To Retain Customers:

 

« Military Operating Systems Bring AI To The Battlefield
California College Ransomware Attack »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Hotlava Systems

Hotlava Systems

HotLava network adapters enable today's powerful servers and workstations to deliver more productivity by reducing congestion at the network interface.

Applause

Applause

Applause provides real-world software testing for functionality, usability, accessibility, load, localization and security.

Avast Software

Avast Software

Avast Software is a security software company that develops antivirus software and internet security services.

ThreatSTOP

ThreatSTOP

ThreatSTOP is a cloud-based automated threat intelligence platform that converts the latest threat data into enforcement policies to stop attacks before they become breaches.

TitanHQ

TitanHQ

TitanHQ offers ultimate protection from internet based threats and powerful Web filtering functionalities to SMBs, Service Providers and Education sectors around the World.

DOS

DOS

DOS is an Ecuadorian company with 3 decades of presence in the market and extensive experience in the planning, management and execution of IT Service Integration Projects.

AimBrain

AimBrain

AimBrain tools detect and prevent fraud, faster and more accurately than ever before.

6point6

6point6

6point6 is a technology consultancy with strong expertise in digital transformation, emerging technology and cyber security.

CHT Security

CHT Security

CHT Security is a Managed Security Service Provider (MSSP) specialized in cyber security technologies enabling enterprises to defense against cyber threats to networks, gateways and endpoints.

PAX Momentum

PAX Momentum

PAX Momentum is the Mid-Atlantic’s premier startup accelerator, specializing in cyber, enterprise software, telecom, CleanTech, FinTech, InsureTech, and AI.

DeepView

DeepView

DeepView delivers a unified platform for managing risk on digital platforms. One interactive secure portal allowing employees to engage their networks securely and compliantly.

JFrog

JFrog

JFrog is on a mission to enable continuous updates through Liquid Software, empowering developers to code high-quality applications that securely flow to end-users with zero downtime.

Ermetic

Ermetic

Ermetic’s identity-first cloud infrastructure security platform provides holistic, multi-cloud protection in an easy-to-deploy SaaS solution.

Oregon Systems

Oregon Systems

Oregon Systems is a Regional Leader & Distributor with value added services for OT, IoT, IIoT & IT Cybersecurity products, Solutions & professional services throughout the middle-east region.

Eleos Labs

Eleos Labs

Eleos Labs' suite of security tools prevent Web3 cyber attacks, reduce economic risks, and protect digital assets.

DNS Research Federation (DNSRF)

DNS Research Federation (DNSRF)

DNSRF's mission is to advance the understanding of the Domain Name System's impact on cybersecurity, policy and technical standards.