May 4, 2019
Home routers are open to attacks, as Huawei ‘backdoor’ shows
Fox News writes about the security vulnerabilities in Huawei routers and features insights from Jimmy Jones, Telecom Business Unit Lead at Positive Technologies who said routers from D-Link, Cisco/Linksys/Netgear, TP-Link, Zyxel and other well-known brands have all been found to have backdoors.
March 5, 2019
Criminals hacking phone codes used by customers to verify bank transactions
The Telegraph interviewed Michael Downs, telecoms cyber-security director of EMEA on the SS7 attacks being used by criminals to target banks.
February 5, 2019
Bank Info Security
Failed Fraud Against UK Bank Abused Mobile Infrastructure
The article looks at how hacks involving SS7 take place, referencing the Metro bank cyber attack where attackers attempted account takeovers by rerouting one-time passcodes. The story references Positive Technologies research that showed some operators don't properly validate signaling messages, making it possible for an attacker to send a fraudulent one.
February 5, 2019
METRO BANK HITS MORE TROUBLE FALLING VICTIM TO NEW KIND OF CYBER ATTACK ON CUSTOMERS
Metro Bank has become the first major bank to fall victim of a new type of cyber attack targeting the codes sent via text messages to customers to verify transactions. Hackers were able to intercept an additional layer of security offered by Metro Bank, which asks customers to type in a code sent by text message to their phones to confirm transfers and payments. Michael Downs, Telecoms Cyber Security Director of EMEA at Positive Technologies commented on the security vulnerability and how it could be exploited.
February 4, 2019
Criminals hit Metro Bank with multi-factor authentication bypass SS7 attack
UK bank latest to fall victim to weakness in the SS7 telecoms protocol which is being increasingly exploited by criminals to defeat multi-factor authentication systems. Michael Downs, telecoms cyber-security director of EMEA at Positive Technologies comments on the Metro bank cyberattack, where it fell victim to a 2FA bypass attack after cyber-criminals were able to compromise a known flaw in the SS7 protocol.
February 1, 2019
Metro Bank hit by cyber attack used to empty customer accounts
Michael Downs, Telecoms Cyber Security Director of EMEA at Positive Technologies comments on the Metro bank cyberattack, the first major bank to be named as a victim of a new type of attack targeting the codes sent via text messages to customers to verify transactions.