A new assessment by Kaspersky warns that cybersecurity risks facing the telecommunications sector are expected to persist into 2026, driven by both long-standing threats and the introduction of new technologies.
According to the Kaspersky Security Bulletin, telecom operators continued to face serious security challenges throughout 2025, including Advanced Persistent Threats (APTs), supply-chain compromises, distributed denial-of-service (DDoS) attacks and SIM-enabled fraud. These threats remained a consistent pressure point for operators as digital infrastructure expanded and networks became more interconnected.
Also Read: First phase of 5G launch begins in Pakistan
The report identifies four major threat categories that dominated the sector. Targeted intrusions, particularly APT campaigns, focused on maintaining covert access to telecom environments for espionage and strategic leverage. Supply-chain vulnerabilities also remained a significant concern, as telecom operators rely heavily on third-party vendors and tightly integrated platforms, making them vulnerable to weaknesses in widely used software and services. In addition, DDoS attacks continued to disrupt service availability and network capacity.
Data from the Kaspersky Security Network shows that between November 2024 and October 2025, 12.79 per cent of telecom users encountered web-based threats, while 20.76 per cent faced on-device threats. During the same period, nearly 10 per cent of telecom organisations globally were affected by ransomware incidents.
Looking ahead to 2026, Kaspersky notes that the telecom industry is shifting from rapid innovation to large-scale implementation of new technologies — a transition that introduces fresh operational risks. The report highlights three key areas of concern: AI-assisted network management, where automation could amplify configuration errors or act on manipulated data; post-quantum cryptography, where rushed adoption may create compatibility and performance challenges; and 5G-to-satellite (non-terrestrial network) integration, which expands service reach but also increases dependency on complex partnerships and integration points.
Leonid Bezvershenko, senior security researcher at Kaspersky’s Global Research and Analysis Team, said that while traditional threats such as APTs, supply-chain attacks and DDoS campaigns are not diminishing, they are now converging with new risks created by emerging technologies. He stressed the importance of maintaining visibility across both cyber and operational domains, from network endpoints to satellite infrastructure.
To strengthen resilience, Kaspersky recommends continuous monitoring of the APT landscape, supported by threat intelligence platforms and regular employee security training. The company also advises telecom operators to approach AI-driven automation cautiously, with phased deployment, human oversight and reliable data validation. Enhancing DDoS preparedness and deploying advanced endpoint detection and response tools were also cited as critical steps to improve early threat detection and incident response.
