Skip to main content

Nokia Threat Intelligence Report finds cybercriminal attacks on telco infrastructure are accelerating, driven by Generative AI and automation

Press release
Nokia Threat Intelligence Report finds cybercriminal attacks on telco infrastructure are accelerating, driven by Generative AI and automation

  • The number and frequency of DDoS attacks have grown from one or two a day to well over 100 per day in many networks, based on traffic monitored by Nokia from June 2023 to June 2024.
  • North America has seen the highest number of cyberattacks due to the concentration and scale of telecom infrastructure and large enterprises in the United States.

2 October 2024
Espoo, Finland – Nokia today released its tenth Threat Intelligence Report which shows that cyberattacks on telecom infrastructure are accelerating, as cybercriminals increasingly harness Generative AI and automation to increase the speed, volume, and sophistication of their attacks.

Among the report’s key findings:

  • DDoS: The number and frequency of Distributed Denial of Service (DDoS) attacks, which can overwhelm telco infrastructure with traffic and make it inoperable, have grown from one or two a day to well over 100 per day in many networks.
  • Bots: Botnets continue to be the primary source of DDoS attack volume, representing about 60% of DDoS traffic monitored by Nokia from June 2023 to June 2024. During that time period, residential proxies became a prominent tool for more advanced application-layer attacks.
  • Regions: North America has seen the highest number of cyberattacks – accounting for about one-third of the total – due to the concentration and scale of telecom infrastructure and large enterprises in the United States.

A botnet is a network of computers and devices controlled and used by cybercriminals for launching malicious activities, such as DDoS attacks and the theft of personal and sensitive information.

Reflecting a trend of recent years, the growth in DDoS attacks has been fueled by the proliferation of hundreds of thousands of insecure IoT devices, ranging from smart refrigerators to smartwatches, which often have lax security protections and have gigabit and multi-gigabit broadband capacity that facilitate the spread of malware. The most common malware in telecommunication networks was found to be a bot that scans for vulnerable devices, with weak encryption, passwords, or design flaws.

East Asia also faces significant data leaks due to inadvertent exposures by companies themselves, while Western Europe contends with a mix of cyber espionage and financially motivated breaches, according to the Threat Intelligence Report.

Even as Generative AI enables faster, more sophisticated attacks, communication service providers are increasingly using the same technology to improve their response times and effectiveness against cyberthreats.

Another threat concerns System-on-chips (SoCs), hardware-integrated circuits that incorporate computer components that drive higher computing and network performance and minimize power consumption. Cybercriminals are increasingly targeting SoCs to exploit vulnerabilities in various components, such as firmware, software, and hardware interfaces.

Quantum computing is another example where new threats are emerging. Organizations like the National Institute of Standards and Technology (NIST), which recently standardized the first algorithms that will form components of the world’s approach to counter the potential threats of quantum computing, are continuing to help shape security strategies globally.

The Threat Intelligence Report is compiled by Nokia’s Threat Intelligence Center, the Nokia Cyber Security Center, the Nokia Security Operations Center, and the Nokia Deepfield Emergency Response Team (ERT), the company’s industry-leading IP network and DDoS security experts.

Rodrigo Brito, Head of Security, Cloud and Network Services at Nokia, said: “The use of Generative AI and automation for nefarious purposes is leading to a stepwise increase in malicious actors’ capabilities and threat potential. The Threat Intelligence findings further reinforce the need for operators, vendors, and regulators to work more collaboratively to develop more robust network security measures, practices, and awareness.”

Additional resources
Webpage: Cybersecurity
Webpage: Deepfield Defender

About Nokia
At Nokia, we create technology that helps the world act together.

As a B2B technology innovation leader, we are pioneering networks that sense, think and act by leveraging our work across mobile, fixed and cloud networks. In addition, we create value with intellectual property and long-term research, led by the award-winning Nokia Bell Labs.

With truly open architectures that seamlessly integrate into any ecosystem, our high-performance networks create new opportunities for monetization and scale. Service providers, enterprises and partners worldwide trust Nokia to deliver secure, reliable and sustainable networks today – and work with us to create the digital services and applications of the future.

Media Inquiries
Nokia Press Office
Email: Press.Services@nokia.com

Follow us on social media
LinkedIn X Instagram Facebook YouTube

Disclaimer & Cookie Notice

Welcome to GOLDEA services for Professionals

Before you continue, please confirm the following:

Professional advisers only

I am a professional adviser and would like to visit the GOLDEA CAPITAL for Professionals website.

Cookie Notice

We use cookies to improve your experience on our website

Information we collect about your use of Goldea Capital website

Goldea Capital website collects personal data about visitors to its website.

When someone visits our websites, we use a third party service, Google Analytics, to collect standard internet log information (such as IP address and type of browser they’re using) and details of visitor behavior patterns. We do this to allow us to keep track of the number of visitors to the various parts of the sites and understand how our website is used. We do not make any attempt to find out the identities or nature of those visiting our websites. We won’t share your information with any other organizations for marketing, market research or commercial purposes and we don’t pass on your details to other websites.

Use of cookies
Cookies are small text files that are placed on your computer or other device by websites that you visit. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site.