Avoid Critical Vulnerabilities in Next‑Gen Networks and IoT: Protect Your Mobile Infrastructure

Historically, managing mobile networks was a predictable endeavor: voice and text traffic behaved within known parameters, allowing operators to forecast usage and preempt issues.

The rise of mobile internet introduced a flood of new variables. Operators found that users consistently outpaced expectations with data‑intensive apps, tethering, and other unforeseen use cases. The immediate response was to throttle, impose extra charges, or block certain services, according to Dmitry Kurbatov, Telecommunications Security Lead at Positive Technologies.

The proliferation of IoT devices amplifies the challenge. Not only do unpredictable traffic patterns persist, but the promise of 5G as a universal connector turns everyday objects into bandwidth consumers—often inefficiently.

Virtualization technologies such as NFV and SDN promise rapid capacity scaling and simplified service provisioning. While they streamline operations, they also centralize control and expose critical functions to the internet, creating a prime target for sophisticated adversaries.

Centralizing network control in a single, internet‑connected platform transforms a valuable asset into a coveted target. Over the past years, enterprises with extensive customer or financial data have suffered precisely this vulnerability.

Recognizing the threat landscape is the first step toward robust security. The second—taking concrete action—must follow, even as teams juggle countless priorities during virtualisation transitions.

An independent security assessment is indispensable. Teams immersed in a deployment are naturally biased and may overlook blind spots. A dedicated third‑party can emulate an attacker’s perspective and uncover hidden flaws.

Such an audit should encompass source code in critical modules, network visibility from the outside, and the configuration of every interconnect. Even a single exposed access point can provide an attack vector.

The backbone protocols—SS7 and its successor Diameter—are increasingly vulnerable. Technical weaknesses in these layers can grant attackers a foothold, from which they can navigate to central control nodes with minimal effort.

Historically, physical access was deemed a deterrent, but modern supply‑chain attacks and compromised carrier equipment now make gateway exploitation far more attainable.

While I won't speculate on catastrophic scenarios, the sheer scale of devices showcased at Mobile World Congress illustrates the stakes. A malicious actor could overload critical segments or divert capacity, with immediate, measurable impact.

Virtualization remains a boon—enhancing efficiency, fostering innovation, and reducing OPEX. Yet operators must not rush blindly. Implementing straightforward safeguards before deployment, coupled with continuous monitoring, can transform potential risk into a managed asset.

The author of this blog is Dmitry Kurbatov, Telecommunications Security Lead at Positive Technologies.