Hackers Plant Stealthy BPFdoor Backdoors in Telecom Networks for Long-Term Access

Red Menshen has put some of the most secret digital sleeper cells ever found into the infrastructure of global telecommunications This article explores telecommunications bpfdoor. . BPFdoor is a hidden Linux backdoor that works by taking advantage of the Berkeley Packet Filter (BPF) functionality in the operating system kernel.

Persistent access to a telecom core can reveal subscriber IDs, mobility events, authentication exchanges, and communication metadata, making it possible to track high-value geopolitical targets on a large scale. Rapid7 has worked with national CERTs and government partners to let affected businesses know. To help businesses quickly check for exposure, the company made a free, open-source scanning script that can find both old and new BPfdoor variants. Follow Rapid7 Labs on Twitter, Facebook, LinkedIn, and X to get daily updates on cybersecurity.

You can get daily updates on our latest ZeroOwl stories by following us on LinkedIn, Twitter, and Facebook. On March 26, 2026, Rapid7 released its most recent news, which can be downloaded from the company's website and mobile app. You can get private help by calling the National Suicide Prevention Lifeline at 1-800-273-8255 or going to http://www.suicidepreventionlifeline.org/.

For private use. If you need help with suicide, you can call the Samaritans at 08457 90 90 90 or go to a local branch. For more information, go to www.samaritans.org or click here. If you need help in the U.S., you can call the national suicide prevention Lifeline at 1-844-788-88 or go to http://www.sussex.org/suicide-prevention-lifeline/.

If you need help in the UK, you can call Samaritans at 08457 909090 or "London Samaritans" on "Ladies and Gentlemen," "The Samaritans," or "Newspapers."