Welcome to our February blog. This month marks the release of the 2025 Mobile Telecommunications Security Landscape report. Building on the previous reports, it reflects developments during 2024 and provides a look forward to emerging topics in 2025 and beyond. The report is informative and offers a wide range of insights that merit careful thought. The analysis highlights current trends and challenges in the mobile telco landscape and presents actionable recommendations that could significantly enhance your organisation’s cyber strategy. Integrating these insights could strengthen your overall security posture and help you be better prepared for potential threats.
Key themes
From evolving attack tactics to supply chain vulnerabilities, we’re breaking down key trends and defensive strategies:
- Defensive force-multipliers – the industry is stronger when it acts together.
- Know the network – to defend the network, it is important to understand its infrastructure, underlying technologies, capabilities, data flows, composition, configuration and then simplify and reduce the attack surface, where possible.
- Protect the infrastructure – several key defences are essential, including patching and platform hardening, layered defences, resilience by design, log analysis, threat hunting, least privilege and multi-factor authentication (MFA).
- Supply chain – as many attacks are launched through suppliers, supply chain security is a core consideration and competence now and into the future.
- Consider the future when making today’s decisions – fully assess the emerging security context, core skills and capabilities to make informed decisions.
As 2024 has seen the continuation of many previously observed security threats, the report covers several evolving topics that were included in previous reports, such as malware, signalling, cloud security and supply chains. However, this year’s report also explores some new trends, including:
- Employing the lens of strategic security to examine the landscape and improve mobile networks’ security posture based on a full understanding of the attack surface, while reducing complexity and implementing resilience by design and layered defences.
- Updating the technical security landscape, including new topics, such as the need to focus on enabling services and the benefits of threat hunting.
- Describing the landscape from an emerging security context perspective that seeks to frame major enduring security areas that can inform today’s security investments in the light of the longer-term operating environment.
If you’d like to discuss these topics or to get more closely involved, please email [email protected].