Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities

Citizen Lab researchers linked two covert surveillance campaigns to abuse of mobile-network signalling infrastructure (SS7 and Diameter), where attackers mimicked operators and manipulated routing to track targets across numerous countries; attribution to specific surveillance vendors or state actors remains unresolved, and regulators have begun probing signalling-protocol vulnerabilities.