The Cybersecurity and Infrastructure Security Agency (CISA) has released new best practice guidance to safeguard mobile communications amid rising concerns over cyber espionage activities linked to People’s Republic of China (PRC)-affiliated threat actors.
These malicious actors have been targeting commercial telecommunications infrastructure to intercept call records and compromise the private communications of highly targeted individuals, including senior government officials and political figures.
The guidance, titled “Mobile Communications Best Practice Guidance,” outlines robust recommendations to enhance the security of mobile communications. While the advice benefits all users, it specifically focuses on protecting individuals who are likely to hold sensitive information of interest to cyber threat actors.
CISA strongly advises individuals, particularly those at high risk of targeting, to assume that all mobile communications—whether on government or personal devices—are vulnerable to interception.
Although no single solution entirely eliminates risk, CISA emphasizes that adopting the outlined best practices can significantly enhance protection.
Free Webinar on Best Practices for API vulnerability & Penetration Testing: Free Registration
Here is a table summarizing the recommendations:
| Recommendation | Details |
|---|---|
| Adopt FIDO Authentication | Enable phishing-resistant, hardware-based FIDO methods like Yubico or Google Titan security keys. Enroll in Google’s Advanced Protection Program for Gmail users. |
| Use End-to-End Encrypted Messaging Apps | Opt for secure messaging platforms like Signal, which feature end-to-end encryption. These apps offer enhanced privacy options such as disappearing messages while supporting text, voice, and video communication across different platforms. |
| Avoid SMS-Based MFA | Migrate to safer alternatives like FIDO authentication or authenticator apps, as SMS MFA is vulnerable to interception and phishing. |
| Use a Password Manager | Store complex passwords securely, receive alerts for weak or compromised passwords, and generate unique credentials. |
| Set a Telecom PIN | Add an additional PIN to mobile carrier accounts to reduce risks from SIM-swapping attacks. |
| Update Mobile Software Regularly | Ensure operating systems and apps are up to date by enabling automatic updates. |
| Use the Latest Mobile Hardware | Upgrade to the most recent devices to ensure critical security features are available. |
| Avoid Personal VPNs | Limit VPN use to organizational requirements to avoid increasing the attack surface. |
In addition to offering detailed technical instructions, CISA highlights the importance of reporting cyber incidents. Individuals and organizations can report threats or breaches by contacting CISA via phone, email, or its online portal.
This guidance reflects growing concerns about targeted cyberattacks on critical infrastructure, particularly in telecommunications, where vulnerabilities can have widespread implications.
By implementing these recommendations, CISA hopes to reduce risks for highly sensitive individuals and mitigate future threats from sophisticated adversaries.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free
Check Point Software Technologies Ltd. has announced plans to establish its inaugural Asia-Pacific Research and…
A recent investigation into Ivanti Endpoint Manager (EPM) has uncovered four critical vulnerabilities that could…
As of February 2025, ransomware remains a formidable cyber threat, evolving in complexity and scale.…
ESET researchers have uncovered a series of malicious activities orchestrated by a North Korea-aligned group…
Cybersecurity researchers from Palo Alto Networks' Unit 42 disclosed the resurgence of the Bookworm malware,…
A recent investigation has uncovered a malicious application, DriverEasy, masquerading as a legitimate Google Chrome…