Vodafone Portugal Has Been Hacked

Uploaded on 2022-02-19 in TECHNOLOGY--Hackers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

A “deliberate and malicious” cyber attack targeting Vodafone Portugal knocked mobile networks offline across the country recently. The incident, which started on Monday evening February 7th, suspended 4G and 5G networks for customers, as well as digital TV and SMS services.

Vodafone said it has seen “no evidence” that customer data has been accessed or compromised due to the attack. Vodafone Portugal is slowly working to recover services used by millions of people and businesses in that country, including those for ambulances and other emergency services.

Vodafone Portugal, a subsidiary of UK-based Vodafone Group with 4.3 million cellphone subscribers and 3.4 million fiber subscribers, said in a statement that the attack took down the subsidiary's 4G and 5G networks and halted fixed voice, television, SMS, and voice and digital answering services.

"[It was] a targeted attack on the network, with the purpose, surely voluntary, intentional to leave our customers without any service," Vodafone Portugal CEO Mário Vaz said at a news conference, and Portuguese news site Lusa.

"The aim of this attack was clearly to make our network unavailable and with a level of severity to make the level of services as difficult as possible."

The attempt largely succeeded. Millions of customers were unable to make voice calls, send text messages, use the Internet, or access cable TV, Lusa and other local news outlets reported. The operator of the country's Multibanco ATM network said that the attack caused "some occasional instability" in its services.

Other businesses and public services were also affected, including ambulance operators, fire departments, and hospitals.“We have already recovered mobile voice services and mobile data services are available exclusively on the 3G network in almost the entire country but, unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services,” the Vodafone said in a statement.

Vodafone Portugal was able to restore 3G voice and data services for most of the country, but many of the remaining affected services continued to struggle. Restoration of services is being prioritised for emergency services.

"Unfortunately, the scale and seriousness of the criminal act to which we were subjected implies careful and prolonged work for all other services," company officials wrote in Tuesday's statement. The recovery process "involves multiple national and international teams and external partners," they added.

Vaz said the company hadn't received any ransom demand that would indicate it was hit by a ransomware attack. The CEO also said he had no indications the attackers had accessed subscriber information or other sensitive data. Specifics of the attack remain unknown.

The attack comes a month after the websites of two of Portugal's biggest news outlets, Impresa and later COFINA, were hacked by a ransomware group calling itself Lapsus$. As of the time this post went live, the group hadn't taken credit for the Vodafone outage.

Vodafone.pt:     Ars Technica:   The Record:    Portswigger

You Might Also Read: 

Vodafone Using Google Cloud To Retain Customers:

 

« Military Operating Systems Bring AI To The Battlefield
California College Ransomware Attack »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ETAS

ETAS

ETAS (formerly Escrypt) is a pioneer and one of today’s leading solution providers for embedded IT security.

SolutionsPT

SolutionsPT

SolutionsPT enables customers to strengthen their Operational Technology (OT) network to meet the ever increasing demand for performance, availability, connectivity and security.

Harel Mallac Technologies

Harel Mallac Technologies

Harel Mallac Technologies is a Mauritian organisation that has developed a strong network of ICT specialists with nodes across the African continent.

SwiftSafe

SwiftSafe

SwiftSafe is a cybersecurity consulting company providing auditing, pentesting, compliance and managed security services.

NeuroChain

NeuroChain

NeuroChain is an intelligent ecosystem that is more secure, more reliable and much faster than blockchain.

KrCERT/CC

KrCERT/CC

KrCERT/CC is the National Computer Emergency Response Team in Korea.

Quantinuum

Quantinuum

Quantinuum is the combination of Cambridge Quantum with Honeywell Quantum Solutions, structured to drive the future of quantum computing.

ANSEC IA

ANSEC IA

ANSEC is a consultancy practice providing independent Information Assurance and IT Security focussed services to customers throughout the UK, Ireland and internationally.

Atomic Data

Atomic Data

Atomic Data is an on-demand, always-on, pay-as-you-go expert extension of your enterprise IT team and infrastructure.

Tsaaro Academy

Tsaaro Academy

Tsaaro Academy is a unique privacy certification training platform and here you earn a privacy certification CEH, CISM and DPO from India’s No.1 Privacy training platform.

OneCollab

OneCollab

OneCollab, your unwavering ally in the dynamic landscape of IT services and cybersecurity.

Denodo

Denodo

Denodo transforms the way organizations operate by unifying their data assets in real time and making data ubiquitous and secure to all users and business applications.

Effectiv

Effectiv

Effectiv is a real-time fraud & risk management platform for Financial Institutions and Fintechs.

Amtivo Group

Amtivo Group

Amtivo provides Certification, Inspection and Training services to national and local Government bodies, multi-nationals, enterprise clients and SMEs.

Hakai Security

Hakai Security

Hakai is a consulting firm specializing in information security that offers customized services and products to meet the needs and goals of each business.

CyberUpgrade

CyberUpgrade

CyberUpgrade is on a mission to empower executives to gain control over their organization’s cybersecurity.