@p1security.bsky.social
In 5G, you don’t lose the network when someone gets in you lose it when you realize there was never proper control in the first place.
Full replay: watch.getcontrast.io/register/p1-...
#5GSecurity #TelecomSecurity #CoreNetworkSecurity #5GPentest
Full replay: watch.getcontrast.io/register/p1-...
#5GSecurity #TelecomSecurity #CoreNetworkSecurity #5GPentest
October 29, 2025 at 2:44 PM
In 5G, you don’t lose the network when someone gets in you lose it when you realize there was never proper control in the first place.
Full replay: watch.getcontrast.io/register/p1-...
#5GSecurity #TelecomSecurity #CoreNetworkSecurity #5GPentest
Full replay: watch.getcontrast.io/register/p1-...
#5GSecurity #TelecomSecurity #CoreNetworkSecurity #5GPentest
Wednesday we held our webinar “Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities.” Thanks for joining. As promised, here’s the recording — watch and share with your team: watch.getcontrast.io/register/p1-... #5GSecurity #Cybersecurity #Telecom
October 24, 2025 at 2:05 PM
Wednesday we held our webinar “Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities.” Thanks for joining. As promised, here’s the recording — watch and share with your team: watch.getcontrast.io/register/p1-... #5GSecurity #Cybersecurity #Telecom
LTE’s All-IP design expands the attack surface—legacy SS7 meets Diameter, S1, X2 & GTP risks. Read real flaws & mitigations in the *LTE Pwnage* ebook: www.p1sec.com/white-paper/... #LTE #CyberSecurity #P1Security
October 14, 2025 at 1:42 PM
LTE’s All-IP design expands the attack surface—legacy SS7 meets Diameter, S1, X2 & GTP risks. Read real flaws & mitigations in the *LTE Pwnage* ebook: www.p1sec.com/white-paper/... #LTE #CyberSecurity #P1Security
Everyone talks about resilience. We focus on the foundation.
Strong passwords mean nothing if your 5G core is exploitable.
Join 5G Penetration Tester El Mehdi Regragui as he reveals real pentest findings across signaling & OAM.
🔗 watch.getcontrast.io/register/p1-...
#5GSecurity
Strong passwords mean nothing if your 5G core is exploitable.
Join 5G Penetration Tester El Mehdi Regragui as he reveals real pentest findings across signaling & OAM.
🔗 watch.getcontrast.io/register/p1-...
#5GSecurity
October 9, 2025 at 1:08 PM
Everyone talks about resilience. We focus on the foundation.
Strong passwords mean nothing if your 5G core is exploitable.
Join 5G Penetration Tester El Mehdi Regragui as he reveals real pentest findings across signaling & OAM.
🔗 watch.getcontrast.io/register/p1-...
#5GSecurity
Strong passwords mean nothing if your 5G core is exploitable.
Join 5G Penetration Tester El Mehdi Regragui as he reveals real pentest findings across signaling & OAM.
🔗 watch.getcontrast.io/register/p1-...
#5GSecurity
🌏 Our Global Account Manager, Thilip Suppaiah, is at #DNSKualaLumpur representing P1 Security. Attending? Reach out: [email protected]
#DigitalNationSummit #GSMA
#DigitalNationSummit #GSMA
September 23, 2025 at 1:05 PM
🌏 Our Global Account Manager, Thilip Suppaiah, is at #DNSKualaLumpur representing P1 Security. Attending? Reach out: [email protected]
#DigitalNationSummit #GSMA
#DigitalNationSummit #GSMA
Top 5G Security Vulnerabilities revealed 🔓
Weak auth, misconfigured cores & more, 5G still opens doors for attackers.
Join P1 Security’s El Mehdi Regragui as he shares exclusive pentest insights
watch.getcontrast.io/register/p1-...
#5G #TelecomSecurity #Pentesting #MobileSecurity #Webinar
Weak auth, misconfigured cores & more, 5G still opens doors for attackers.
Join P1 Security’s El Mehdi Regragui as he shares exclusive pentest insights
watch.getcontrast.io/register/p1-...
#5G #TelecomSecurity #Pentesting #MobileSecurity #Webinar
Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities
Join El Mehdi Regragui as he reveals the most critical 5G security vulnerabilities uncovered in real-world penetration tests—plus proven mitigation tactics...
watch.getcontrast.io
September 10, 2025 at 2:07 PM
Top 5G Security Vulnerabilities revealed 🔓
Weak auth, misconfigured cores & more, 5G still opens doors for attackers.
Join P1 Security’s El Mehdi Regragui as he shares exclusive pentest insights
watch.getcontrast.io/register/p1-...
#5G #TelecomSecurity #Pentesting #MobileSecurity #Webinar
Weak auth, misconfigured cores & more, 5G still opens doors for attackers.
Join P1 Security’s El Mehdi Regragui as he shares exclusive pentest insights
watch.getcontrast.io/register/p1-...
#5G #TelecomSecurity #Pentesting #MobileSecurity #Webinar
5G was built to be “secure by design.” In practice, many deployments still expose Diameter, GTP & SBA interfaces attackers can abuse.
Full replay 👉 watch.getcontrast.io/register/p1-...
Is your network secure in practice?
Book a call 👉 calendly.com/yves-mangamb...
#5G #TelecomSecurity #P1Security
Full replay 👉 watch.getcontrast.io/register/p1-...
Is your network secure in practice?
Book a call 👉 calendly.com/yves-mangamb...
#5G #TelecomSecurity #P1Security
August 27, 2025 at 1:07 PM
5G was built to be “secure by design.” In practice, many deployments still expose Diameter, GTP & SBA interfaces attackers can abuse.
Full replay 👉 watch.getcontrast.io/register/p1-...
Is your network secure in practice?
Book a call 👉 calendly.com/yves-mangamb...
#5G #TelecomSecurity #P1Security
Full replay 👉 watch.getcontrast.io/register/p1-...
Is your network secure in practice?
Book a call 👉 calendly.com/yves-mangamb...
#5G #TelecomSecurity #P1Security
📡 5G: More Features, More Attack Surfaces
SBA, slicing, NFV, HTTP/2 APIs… 5G isn’t just faster, it’s more complex (attackers love complex).
Learn to secure it with TS-501: 5G Telecom Security ⬇️
online-training.p1sec.com/course/5g-te...
#5G #TelecomSecurity #TS501
SBA, slicing, NFV, HTTP/2 APIs… 5G isn’t just faster, it’s more complex (attackers love complex).
Learn to secure it with TS-501: 5G Telecom Security ⬇️
online-training.p1sec.com/course/5g-te...
#5G #TelecomSecurity #TS501
5G Telecom Security hands-on course (TS-501)
This virtual training will help security and telecom professionals get an understanding of the key concepts of 5G, their security, the implementation of such architectures and the impact in terms of r...
online-training.p1sec.com
August 20, 2025 at 1:31 PM
📡 5G: More Features, More Attack Surfaces
SBA, slicing, NFV, HTTP/2 APIs… 5G isn’t just faster, it’s more complex (attackers love complex).
Learn to secure it with TS-501: 5G Telecom Security ⬇️
online-training.p1sec.com/course/5g-te...
#5G #TelecomSecurity #TS501
SBA, slicing, NFV, HTTP/2 APIs… 5G isn’t just faster, it’s more complex (attackers love complex).
Learn to secure it with TS-501: 5G Telecom Security ⬇️
online-training.p1sec.com/course/5g-te...
#5G #TelecomSecurity #TS501
🛡️ From SS7 flaws to the latest HTTP/2 5G zero-days, P1 Security’s VKB tracks them all.
⚡ Always up-to-date
⚡ Telecom-native context
⚡ Actionable before attackers strike
🔗 saas.p1sec.com/home
www.p1sec.com/product/vuln...
#TelecomSecurity #VKB #5G #HTTP2 #SignalingSecurity
⚡ Always up-to-date
⚡ Telecom-native context
⚡ Actionable before attackers strike
🔗 saas.p1sec.com/home
www.p1sec.com/product/vuln...
#TelecomSecurity #VKB #5G #HTTP2 #SignalingSecurity
August 14, 2025 at 12:57 PM
🛡️ From SS7 flaws to the latest HTTP/2 5G zero-days, P1 Security’s VKB tracks them all.
⚡ Always up-to-date
⚡ Telecom-native context
⚡ Actionable before attackers strike
🔗 saas.p1sec.com/home
www.p1sec.com/product/vuln...
#TelecomSecurity #VKB #5G #HTTP2 #SignalingSecurity
⚡ Always up-to-date
⚡ Telecom-native context
⚡ Actionable before attackers strike
🔗 saas.p1sec.com/home
www.p1sec.com/product/vuln...
#TelecomSecurity #VKB #5G #HTTP2 #SignalingSecurity
📡 IMS & SIP: Core to telecom — and top targets for attackers.
⚠️ SIP spoofing, session hijacking
⚠️ IMS DoS, weak auth, 3rd-party app risks
🔍 Learn how they work, where they break, and how to secure them:
www.p1sec.com/blog/ims-and...
#TelecomSecurity #IMS #SIP
⚠️ SIP spoofing, session hijacking
⚠️ IMS DoS, weak auth, 3rd-party app risks
🔍 Learn how they work, where they break, and how to secure them:
www.p1sec.com/blog/ims-and...
#TelecomSecurity #IMS #SIP
IMS and SIP Protocol: Enhancing Security in Prepaid and Postpaid Telecom Systems
IMS and SIP Protocol: Enhancing Security in Prepaid and Postpaid Telecom Systems
www.p1sec.com
August 6, 2025 at 2:09 PM
📡 IMS & SIP: Core to telecom — and top targets for attackers.
⚠️ SIP spoofing, session hijacking
⚠️ IMS DoS, weak auth, 3rd-party app risks
🔍 Learn how they work, where they break, and how to secure them:
www.p1sec.com/blog/ims-and...
#TelecomSecurity #IMS #SIP
⚠️ SIP spoofing, session hijacking
⚠️ IMS DoS, weak auth, 3rd-party app risks
🔍 Learn how they work, where they break, and how to secure them:
www.p1sec.com/blog/ims-and...
#TelecomSecurity #IMS #SIP
🎥 O-RAN: Disaggregation = Bigger Attack Surface
More flexibility means more interfaces — and more exposure.
In this clip, we break down the real risks we see in the field.
📩 Rolling out O-RAN?
Let’s talk: www.p1sec.com/contact
#ORAN #5GSecurity #TelcoSec
More flexibility means more interfaces — and more exposure.
In this clip, we break down the real risks we see in the field.
📩 Rolling out O-RAN?
Let’s talk: www.p1sec.com/contact
#ORAN #5GSecurity #TelcoSec
July 29, 2025 at 2:19 PM
🎥 O-RAN: Disaggregation = Bigger Attack Surface
More flexibility means more interfaces — and more exposure.
In this clip, we break down the real risks we see in the field.
📩 Rolling out O-RAN?
Let’s talk: www.p1sec.com/contact
#ORAN #5GSecurity #TelcoSec
More flexibility means more interfaces — and more exposure.
In this clip, we break down the real risks we see in the field.
📩 Rolling out O-RAN?
Let’s talk: www.p1sec.com/contact
#ORAN #5GSecurity #TelcoSec
🚨 Many telco vulns never get CVEs.
Vendors delay, ignore, or silently patch.
Operators? Left in the dark.
At P1 Security, we follow a 180-day disclosure policy—document and publish in our private VKB when silence persists.
🔗 www.p1sec.com/blog/respons...
#CVE #TelecomSecurity #VKB
Vendors delay, ignore, or silently patch.
Operators? Left in the dark.
At P1 Security, we follow a 180-day disclosure policy—document and publish in our private VKB when silence persists.
🔗 www.p1sec.com/blog/respons...
#CVE #TelecomSecurity #VKB
Responsible Vulnerability Disclosure at P1 Security – Full Policy Breakdown
Explore how P1 Security discloses telecom vulnerabilities via a structured 180-day process, CVE coordination, and its private VKB platform to help protect operators and critical infrastructure.
www.p1sec.com
July 23, 2025 at 11:34 AM
🚨 Many telco vulns never get CVEs.
Vendors delay, ignore, or silently patch.
Operators? Left in the dark.
At P1 Security, we follow a 180-day disclosure policy—document and publish in our private VKB when silence persists.
🔗 www.p1sec.com/blog/respons...
#CVE #TelecomSecurity #VKB
Vendors delay, ignore, or silently patch.
Operators? Left in the dark.
At P1 Security, we follow a 180-day disclosure policy—document and publish in our private VKB when silence persists.
🔗 www.p1sec.com/blog/respons...
#CVE #TelecomSecurity #VKB
O-RAN isn’t just open — it’s a full shift in how mobile networks are built.
In the intro to our webinar, we lay the groundwork: what O-RAN is, and why it introduces both flexibility and risk.
🎥 Watch the full session → app.getcontrast.io/register/p1-...
#ORAN #5GSecurity #TelcoSec
In the intro to our webinar, we lay the groundwork: what O-RAN is, and why it introduces both flexibility and risk.
🎥 Watch the full session → app.getcontrast.io/register/p1-...
#ORAN #5GSecurity #TelcoSec
July 17, 2025 at 1:45 PM
O-RAN isn’t just open — it’s a full shift in how mobile networks are built.
In the intro to our webinar, we lay the groundwork: what O-RAN is, and why it introduces both flexibility and risk.
🎥 Watch the full session → app.getcontrast.io/register/p1-...
#ORAN #5GSecurity #TelcoSec
In the intro to our webinar, we lay the groundwork: what O-RAN is, and why it introduces both flexibility and risk.
🎥 Watch the full session → app.getcontrast.io/register/p1-...
#ORAN #5GSecurity #TelcoSec
Telecom networks are under fire—attackers exploit core weaknesses, silently and persistently.
📅 Sept 10 | 🕒 15:00–16:00 CET
🎙️ Valeri Dragoev, P1 Security
📡 Real attack traces via PTM
🔗 app.getcontrast.io/register/p1-...
#TelecomSecurity #5GSecurity #PTM #CyberSecurity #SignalingSecurity
📅 Sept 10 | 🕒 15:00–16:00 CET
🎙️ Valeri Dragoev, P1 Security
📡 Real attack traces via PTM
🔗 app.getcontrast.io/register/p1-...
#TelecomSecurity #5GSecurity #PTM #CyberSecurity #SignalingSecurity
July 16, 2025 at 1:58 PM
Telecom networks are under fire—attackers exploit core weaknesses, silently and persistently.
📅 Sept 10 | 🕒 15:00–16:00 CET
🎙️ Valeri Dragoev, P1 Security
📡 Real attack traces via PTM
🔗 app.getcontrast.io/register/p1-...
#TelecomSecurity #5GSecurity #PTM #CyberSecurity #SignalingSecurity
📅 Sept 10 | 🕒 15:00–16:00 CET
🎙️ Valeri Dragoev, P1 Security
📡 Real attack traces via PTM
🔗 app.getcontrast.io/register/p1-...
#TelecomSecurity #5GSecurity #PTM #CyberSecurity #SignalingSecurity
O-RAN’s flexibility comes at a cost: more interfaces = more attack surfaces.
In our latest webinar, we dive into how openness and vendor diversity reshape both deployment and the threat landscape.
🔗 Watch the recording: app.getcontrast.io/register/p1-...
In our latest webinar, we dive into how openness and vendor diversity reshape both deployment and the threat landscape.
🔗 Watch the recording: app.getcontrast.io/register/p1-...
July 10, 2025 at 12:22 PM
O-RAN’s flexibility comes at a cost: more interfaces = more attack surfaces.
In our latest webinar, we dive into how openness and vendor diversity reshape both deployment and the threat landscape.
🔗 Watch the recording: app.getcontrast.io/register/p1-...
In our latest webinar, we dive into how openness and vendor diversity reshape both deployment and the threat landscape.
🔗 Watch the recording: app.getcontrast.io/register/p1-...
Is reverse engineering legal?
It depends where — and how — you do it.
📘 Our whitepaper breaks down laws in EU, US, Japan & China.
Get clarity on decompilation, fair use & interoperability rules.
🔗 www.p1sec.com/white-paper/...
#ReverseEngineering #CyberLaw
It depends where — and how — you do it.
📘 Our whitepaper breaks down laws in EU, US, Japan & China.
Get clarity on decompilation, fair use & interoperability rules.
🔗 www.p1sec.com/white-paper/...
#ReverseEngineering #CyberLaw
July 8, 2025 at 1:22 PM
Is reverse engineering legal?
It depends where — and how — you do it.
📘 Our whitepaper breaks down laws in EU, US, Japan & China.
Get clarity on decompilation, fair use & interoperability rules.
🔗 www.p1sec.com/white-paper/...
#ReverseEngineering #CyberLaw
It depends where — and how — you do it.
📘 Our whitepaper breaks down laws in EU, US, Japan & China.
Get clarity on decompilation, fair use & interoperability rules.
🔗 www.p1sec.com/white-paper/...
#ReverseEngineering #CyberLaw
This short demo showcases an attack on the O-FH towards an emulated open-source O-RU, where a specially crafted malicious O-FH C-Plane message is sent towards the O-RU and results in a crash.
Join us today at 16:00 CET for a live deep dive.
🔗 app.getcontrast.io/register/p1-...
#ORAN #TelcoSec
Join us today at 16:00 CET for a live deep dive.
🔗 app.getcontrast.io/register/p1-...
#ORAN #TelcoSec
July 3, 2025 at 7:51 AM
This short demo showcases an attack on the O-FH towards an emulated open-source O-RU, where a specially crafted malicious O-FH C-Plane message is sent towards the O-RU and results in a crash.
Join us today at 16:00 CET for a live deep dive.
🔗 app.getcontrast.io/register/p1-...
#ORAN #TelcoSec
Join us today at 16:00 CET for a live deep dive.
🔗 app.getcontrast.io/register/p1-...
#ORAN #TelcoSec
You've heard the O-RAN hype—now see what’s under the hood.
Join us July 3, 16:00 CET for a live breakdown of O-RAN security threats, demos & defenses with Kye Grundy.
🔗 app.getcontrast.io/register/p1-...
#OpenRAN #TelcoSec #5GSecurity #Cybersecurity
Join us July 3, 16:00 CET for a live breakdown of O-RAN security threats, demos & defenses with Kye Grundy.
🔗 app.getcontrast.io/register/p1-...
#OpenRAN #TelcoSec #5GSecurity #Cybersecurity
Exploring O-RAN Security
Exploring O-RAN Security
\[Webinar #10 – Thursday, July 3 | 16:00–17:00 CET]
Open RAN (O-RAN) is rapidly gaining traction as a transformative approach to...
app.getcontrast.io
July 1, 2025 at 7:41 AM
You've heard the O-RAN hype—now see what’s under the hood.
Join us July 3, 16:00 CET for a live breakdown of O-RAN security threats, demos & defenses with Kye Grundy.
🔗 app.getcontrast.io/register/p1-...
#OpenRAN #TelcoSec #5GSecurity #Cybersecurity
Join us July 3, 16:00 CET for a live breakdown of O-RAN security threats, demos & defenses with Kye Grundy.
🔗 app.getcontrast.io/register/p1-...
#OpenRAN #TelcoSec #5GSecurity #Cybersecurity
Thank you to GSMA and BT Group for welcoming us in beautiful Birmingham for the FASG #32 this week! We enjoyed 3 days of fascinating discussions around various topics. It was great connecting with telecom security professionals from across the industry to address emerging threats in mobile networks.
June 27, 2025 at 1:07 PM
Thank you to GSMA and BT Group for welcoming us in beautiful Birmingham for the FASG #32 this week! We enjoyed 3 days of fascinating discussions around various topics. It was great connecting with telecom security professionals from across the industry to address emerging threats in mobile networks.
Reposted
🎤 Catch us at #TelcoSecDay tomorrow at #Troopers in Heidelberg!
Jimmy Billaud will present:
“Security risk of International IP-based SIP network and effectiveness of SIP IDS”
Come say hi!
#VoIP #TelecomSecurity #MobileNetworkSecurity #troopers25
Jimmy Billaud will present:
“Security risk of International IP-based SIP network and effectiveness of SIP IDS”
Come say hi!
#VoIP #TelecomSecurity #MobileNetworkSecurity #troopers25
June 23, 2025 at 1:43 PM
🎤 Catch us at #TelcoSecDay tomorrow at #Troopers in Heidelberg!
Jimmy Billaud will present:
“Security risk of International IP-based SIP network and effectiveness of SIP IDS”
Come say hi!
#VoIP #TelecomSecurity #MobileNetworkSecurity #troopers25
Jimmy Billaud will present:
“Security risk of International IP-based SIP network and effectiveness of SIP IDS”
Come say hi!
#VoIP #TelecomSecurity #MobileNetworkSecurity #troopers25
🚨 CVE-2025-32433 lets attackers run remote code on Erlang/OTP SSH servers before login. Telcos & IoT infra exposed. Lateral movement, RCE, full compromise. Fix it fast.
Full breakdown: app.getcontrast.io/register/p1-...
#P1Security #RCE #Telcosec #Erlang #SSH #VulnerabilityIntelligence
Full breakdown: app.getcontrast.io/register/p1-...
#P1Security #RCE #Telcosec #Erlang #SSH #VulnerabilityIntelligence
June 6, 2025 at 8:30 AM
🚨 CVE-2025-32433 lets attackers run remote code on Erlang/OTP SSH servers before login. Telcos & IoT infra exposed. Lateral movement, RCE, full compromise. Fix it fast.
Full breakdown: app.getcontrast.io/register/p1-...
#P1Security #RCE #Telcosec #Erlang #SSH #VulnerabilityIntelligence
Full breakdown: app.getcontrast.io/register/p1-...
#P1Security #RCE #Telcosec #Erlang #SSH #VulnerabilityIntelligence