Hackers have been quietly stealing gigabytes of call data records from mobile carriers
[SOUND] Cyber security firm, Cybereason?
Cybereason, that's a terrible name, said it uncovered a vast hacking operation in which hackers infiltrated multiple mobile carriers for years.
They even had the ability to shut down communications at a moment's notice.
How did this happen?
Yeah so they had hacked more than a dozen mobile carriers in the Middle East, Africa, Asia, and Europe.
Not the United States?
There has been no activity in North America that they discovered which doesn't mean that they're not in the network.
It's just that they haven't found it.
So we basically hack them through, either these companies had a public facing server that had no password on it, which seems to happen a lot.
Or the fission employ who just happen to click on any link that pops up in their inbox.
Pretty typical hacker all stand.
So it's not something like really crazy but the, sofisticated part is about how they spread.
So once they were in the network it was basically, all right, how many computers does this login have access to?
This many computers?
So then let's access all those computers, and then from there, once they have access to those computers and continues like breaking down, like a really bad pyramid scheme.
But essentially they do all that until they get escalated privileges Which then they create accounts for themselves.
Basically posing as the IT team online.
This is crazy
Yeah, so they worked as this shadow IT team within these mobile carriers, which gave them a lot of privileges.
They were able to shut down the network communicatons that they wanted to Fortunately or unfortunately, I don't know from what your prospective is.
The focus of this attack was more about espionage rather than disruption.
So they wanted to be in the network and steal information from specific people.
So that access to hundreds of millions of people's records But they chose to only download gigabytes of data on targeted individuals, less than 100 individuals.
That's pretty wild, this sounds like a government was behind it.
Yeah so it suspected to be the Chinese government.
Because it's all the hacking tools are what the Chinese government has used, same methods, same kind of think philosophy you know Stay there quietly and steal as much information as you can but not like make any noise.
And they did it effectively.
But the thing is is that this could also be a government entity trying to look like framing the Chinese government on this.
Attribution is extremely hard in virus security.
So it's still unclear.
But all signs right now do point to China on this.