Vodafone Portugal Has Been Hacked

Uploaded on 2022-02-19 in TECHNOLOGY--Hackers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

A “deliberate and malicious” cyber attack targeting Vodafone Portugal knocked mobile networks offline across the country recently. The incident, which started on Monday evening February 7th, suspended 4G and 5G networks for customers, as well as digital TV and SMS services.

Vodafone said it has seen “no evidence” that customer data has been accessed or compromised due to the attack. Vodafone Portugal is slowly working to recover services used by millions of people and businesses in that country, including those for ambulances and other emergency services.

Vodafone Portugal, a subsidiary of UK-based Vodafone Group with 4.3 million cellphone subscribers and 3.4 million fiber subscribers, said in a statement that the attack took down the subsidiary's 4G and 5G networks and halted fixed voice, television, SMS, and voice and digital answering services.

"[It was] a targeted attack on the network, with the purpose, surely voluntary, intentional to leave our customers without any service," Vodafone Portugal CEO Mário Vaz said at a news conference, and Portuguese news site Lusa.

"The aim of this attack was clearly to make our network unavailable and with a level of severity to make the level of services as difficult as possible."

The attempt largely succeeded. Millions of customers were unable to make voice calls, send text messages, use the Internet, or access cable TV, Lusa and other local news outlets reported. The operator of the country's Multibanco ATM network said that the attack caused "some occasional instability" in its services.

Other businesses and public services were also affected, including ambulance operators, fire departments, and hospitals.“We have already recovered mobile voice services and mobile data services are available exclusively on the 3G network in almost the entire country but, unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services,” the Vodafone said in a statement.

Vodafone Portugal was able to restore 3G voice and data services for most of the country, but many of the remaining affected services continued to struggle. Restoration of services is being prioritised for emergency services.

"Unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services," company officials wrote in Tuesday's statement. The recovery process "involves multiple national and international teams and external partners," they added.

Vaz said the company hadn't received any ransom demand that would indicate it was hit by a ransomware attack. The CEO also said he had no indications the attackers had accessed subscriber information or other sensitive data. Specifics of the attack remain unknown.

The attack comes a month after the websites of two of Portugal's biggest news outlets, Impresa and later COFINA, were hacked by a ransomware group calling itself Lapsus$. As of the time this post went live, the group hadn't taken credit for the Vodafone outage.

Vodafone.pt:     Ars Technica:   The Record:    Portswigger

You Might Also Read: 

Vodafone Using Google Cloud To Retain Customers:

 

« Military Operating Systems Bring AI To The Battlefield
California College Ransomware Attack »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Blueliv

Blueliv

Blueliv is a leading provider of targeted cyber threat information and intelligence. We deliver automated and actionable threat intelligence to protect the enterprise and manage your digital risk.

Mobile Mentor

Mobile Mentor

Mobile Mentor is an independent provider of enterprise mobility solutions in New Zealand and Australia.

HID Global

HID Global

HID Global is a trusted leader in products, services and solutions related to the creation, management, and use of secure identities.

StationX

StationX

StationX is a leading provider of cyber security training, consultancy and services.

Vuntie

Vuntie

Vuntie blend European craftsmanship, performance and open-source technology to deliver cybersecurity services including penetration testing, incident response, training and consultancy.

ThreatGen

ThreatGen

ThreatGEN™ works with your team to improve your resiliency and industrial cybersecurity capabilities through an innovative and modernized approach to training and services.

Centre for Multidisciplinary Research, Innovation & Collaboration (C-MRiC)

Centre for Multidisciplinary Research, Innovation & Collaboration (C-MRiC)

C-MRiC collaborates on initiatives, ranging from national cyber security, enterprise security, information assurance, protection strategy, climate control to health and life sciences.

Qmulos

Qmulos

Qmulos’ real-time continuous monitoring risk management suite, Q-Compliance, provides a massively flexible and scalable solution to optimizing operational security.

Securolytics

Securolytics

Securolytics offers the simplest, most complete and affordable IoT security for all organizations. Securolytics quickly identifies unmanaged devices to reduce security and compliance risks.

Alkira

Alkira

Alkira has reinvented networking for the cloud era by delivering the network cloud, the first global unified network infrastructure with on-demand hybrid and multi-cloud connectivity.

Information Technology Solutions (ITS)

Information Technology Solutions (ITS)

Information Technology Solutions is a single source provider for managing and securing mission-critical IT services.

Rocky Mountain Cybersecurity

Rocky Mountain Cybersecurity

Rocky Mountain Cybersecurity's mission is to provide value by dramatically improving the cybersecurity posture of our clients and business partners.

EDGE Group

EDGE Group

EDGE is one of the world’s leading advanced technology groups, established to develop agile, bold and disruptive solutions for defence and beyond.

OxCyber

OxCyber

OxCyber's mission is to ignite and encourage cybersecurity and technology growth in the Thames Valley through meetings, webinars, in person events, workshops and mentorship programs.

FastPassCorp

FastPassCorp

In the world of IT, identity theft is a growing concern. FastPass offers an innovative solution as a cloud or on-premises offering.

Venticento

Venticento

Venticento is an IT company specialized in consulting and network support and assistance for companies that need to make their business processes more effective.