The Cybersecurity and Infrastructure Security Agency (CISA) has released new best practice guidance to safeguard mobile communications amid rising concerns over cyber espionage activities linked to People’s Republic of China (PRC)-affiliated threat actors.
These malicious actors have been targeting commercial telecommunications infrastructure to intercept call records and compromise the private communications of highly targeted individuals, including senior government officials and political figures.
The guidance, titled “Mobile Communications Best Practice Guidance,” outlines robust recommendations to enhance the security of mobile communications. While the advice benefits all users, it specifically focuses on protecting individuals who are likely to hold sensitive information of interest to cyber threat actors.
CISA strongly advises individuals, particularly those at high risk of targeting, to assume that all mobile communications—whether on government or personal devices—are vulnerable to interception.
Although no single solution entirely eliminates risk, CISA emphasizes that adopting the outlined best practices can significantly enhance protection.
Free Webinar on Best Practices for API vulnerability & Penetration Testing: Free Registration
Here is a table summarizing the recommendations:
Recommendation | Details |
---|---|
Adopt FIDO Authentication | Enable phishing-resistant, hardware-based FIDO methods like Yubico or Google Titan security keys. Enroll in Google’s Advanced Protection Program for Gmail users. |
Use End-to-End Encrypted Messaging Apps | Opt for secure messaging platforms like Signal, which feature end-to-end encryption. These apps offer enhanced privacy options such as disappearing messages while supporting text, voice, and video communication across different platforms. |
Avoid SMS-Based MFA | Migrate to safer alternatives like FIDO authentication or authenticator apps, as SMS MFA is vulnerable to interception and phishing. |
Use a Password Manager | Store complex passwords securely, receive alerts for weak or compromised passwords, and generate unique credentials. |
Set a Telecom PIN | Add an additional PIN to mobile carrier accounts to reduce risks from SIM-swapping attacks. |
Update Mobile Software Regularly | Ensure operating systems and apps are up to date by enabling automatic updates. |
Use the Latest Mobile Hardware | Upgrade to the most recent devices to ensure critical security features are available. |
Avoid Personal VPNs | Limit VPN use to organizational requirements to avoid increasing the attack surface. |
In addition to offering detailed technical instructions, CISA highlights the importance of reporting cyber incidents. Individuals and organizations can report threats or breaches by contacting CISA via phone, email, or its online portal.
This guidance reflects growing concerns about targeted cyberattacks on critical infrastructure, particularly in telecommunications, where vulnerabilities can have widespread implications.
By implementing these recommendations, CISA hopes to reduce risks for highly sensitive individuals and mitigate future threats from sophisticated adversaries.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free
A startling discovery by Hunted Labs has brought to light a potential security risk lurking…
Security researchers at Elastic have recreated the intricate details of the February 21, 2025, ByBit…
Unit 42 researchers at Palo Alto Networks, a highly targeted malicious campaign orchestrated by the…
DragonForce has swiftly risen as a formidable player in 2025, embodying a hybrid threat that…
The Akamai Security Intelligence and Response Team (SIRT) has identified active exploitation of command injection…
IBM has issued a security bulletin addressing two newly discovered, high-severity vulnerabilities in its Cognos…