Private Network Check Readiness - TeckNexus Solutions

New SecurityGen study highlights hidden threat to 5G mobile networks from GTP-based cyber-attacks

SecurityGen has presented its latest research findings on GTP vulnerabilities in the paper - GTP vulnerabilities: A cause for concern in 5G and LTE networks. This research highlights how GTP is still vulnerable. And as GTP will continue to play a role in 5G networks given the interplay and integration of technologies, MNOS must become more aware about these threats and ensure proactive security measures for GTP protocol.
SecurityGen unveils 5G Cyber-security Lab
Telecom security experts call on operators to put in place comprehensive cyber-security measures against GTP threats.

London, UK – 10 August 2023 – Mobile operators need to reassess security vulnerabilities in the key GTP (GPRS Tunnelling Protocol) protocol and bolster GTP security within their networks as they continue to invest in and roll out 5G, according to a new study by SecurityGen, the global provider of security solutions and services for the telecom industry.


SecurityGen’s latest report titled – GTP vulnerabilities: A cause for concern in 5G and LTE networks. Based on 150 telecom security assessments of 39 live mobile networks during 2022 and 2023, found that nearly 77 percent of networks had no cyber-security measures in place against GTP-based attacks. Only 23 percent had a high level of cyber-security measures to keep successful GTP-based test attacks to a minimum.

“Despite its widespread use, the GTP mobile network protocol is not entirely secure and opens up opportunities for attackers to intercept sensitive user data, engage in fraudulent activities, or disrupt network services,” said Dmitry Kurbatov, co-founder and CTO of SecurityGen. “As we explored and examined GTP’s security vulnerabilities, it became apparent that the protocol requires in-depth consideration and robust mitigation strategies to block the potential threats more so in the 5G set-up.”

The study is based on the results of over 150 telecom security assessments by SecurityGen during the last 12 months involving 39 mobile operators in 24 countries across the SEA, LATAM, and MEA regions. It highlights the most critical GTP-related threats to raise awareness among mobile operators and stakeholders of the hidden vulnerabilities within the protocol.

The SecurityGen assessments found that all of the tested networks exhibited some vulnerabilities in their management of the GTP protocol:

    • In 71 percent of networks assessed, GTP-based test attacks on subscriber information disclosure were successful, Which can be used to impact subscribers, perform other attacks, target other interfaces, radio interfaces, and OS and network vulnerabilities.
    • 62 percent of networks assessed were vulnerable to fraudulent activity involving the GTP protocol.
    • 85 percent of networks were susceptible to targeted attacks on subscribers aimed at impeding or completely interrupting the functionality of data transmission services.
    • 46 percent were vulnerable to network equipment denial-of-service attacks. Using this vulnerability, an attacker can simultaneously hinder network (Internet) connection for individual subscribers and many users via network equipment denial.
    • User traffic interception was successful in 69 percent of the networks tested. By exploiting this vulnerability, an attacker can direct all incoming traffic to their equipment by altering the nodes that process the user traffic.

“Throughout our assessments, we were surprised that not a single network was protected with a GTP firewall. Even when mobile operators claimed to have a GTP firewall deployed, we could carry test attacks successfully, as there was no functional GTP firewall in place,” commented Kurbatov. “This suggests that either the GTP firewall was not actively operational, or its filtering rules were not correctly configured or enabled.”

“Some mobile operators employ IP address filtering from non-roaming partners to incoming traffic as a counter-measure – however, our simulated test attacks were still able to bypass this technique. The deployment of a fully functional GTP firewall could significantly improve these statistics and provide more robust protection against potential threats. Adopting advanced GTP firewall solutions undoubtedly enhances the overall security of mobile networks and protects them against multiple GTP attack vectors.”

Kurbatov continued, “The interconnected nature of 3G, 4G, and now 5G mobile networks across different generations amplify the risks posed by GTP security vulnerabilities. Our research highlighted a worrying lack of robust security measures across a significant proportion of the mobile networks we examined. Despite ongoing efforts by the GSMA and individual mobile operators since 2017, we found that comprehensive cyber-security measures are still not in place for the most part.

“The increasingly vital role of mobile technology in nearly every aspect of how we live and work means that operators must regard effective cyber-security measures and policies that protect their networks and mobile users as a commercial and operational priority. This includes a comprehensive GTP protection strategy encompassing deployment of functional GTP firewalls, the application of GSMA-recommended protections, the integration of intrusion detection systems, and the regular monitoring of all network communication interfaces,” added Kurbatov.

“The findings of this study should serve as a wake-up call that spurs operators and the wider telecoms industry to take action necessary to secure our interconnected digital future.”

The SecurityGen White Paper, the title – GTP vulnerabilities: A cause for concern in 5G and LTE networks

About SecurityGen
Founded in 2022, SecurityGen is a global company focused on telecom security. We deliver a solid security foundation to drive secure telecom digital transformations and ensure safe and robust network operations. Our extensive product and service portfolio provides complete protection against existing and advanced telecom security threats.

www.secgen.com


Recent Content

NTT DATA and Google Cloud expanded their global partnership to speed the adoption of agentic AI and cloud-native modernization across regulated and dataintensive industries. The push emphasizes sovereign cloud options using Google Distributed Cloud, with both airgapped and connected deployments to meet data residency and regulatory needs without stalling innovation. The partners plan to build industry-specific agentic AI solutions on Google Agent space and Gemini models, underpinned by secure data clean rooms and modernized data platforms. NTT DATA is standing up a dedicated Google Cloud Business Group with thousands of engineers and aims to certify 5,000 practitioners to accelerate delivery, migrations, and managed services.
Lumen surpassing 1,000 customers on its Network-as-a-Service platform is a clear marker for where enterprise networking is headed. AI adoption, multi-cloud architectures, and distributed applications are pushing organizations toward on-demand, software-driven connectivity. Lumens platform bundles three core service types under a single digital experience. The platform integrates with major hyperscalers, enabling direct paths to AWS, Microsoft Azure, and Google Cloud. All can be provisioned self-service, scaled up or down based on demand, and stitched to cloud regions and third-party data centers via cloud on-ramps.
Vietnam is entering the hyperscale AI data center map, with VNPT and LG CNS positioning to meet local and regional demand. For telecom operators and enterprises, now is the time to align AI roadmaps with data center strategy: plan for high-density racks and liquid cooling, secure GPU capacity, engineer diverse connectivity, and build energy resilience. As the regions AI infrastructure forms, those who co-design workload placement, interconnect, and power from the outset will gain durable cost and performance advantages.
The Cellular Operators Association of India (COAI), representing Reliance Jio, Bharti Airtel, and Vodafone Idea, is pushing back against direct 5G spectrum allocation for enterprises. COAI argues that India’s urban coverage, revenue priorities, and national security risks make an operator-led model via spectrum leasing or network slicing, more viable. The Department of Telecommunications is reviewing TRAI’s recommendation, with the decision set to shape India’s private 5G market for years.
Rogers’ “Plus It Up” campaign combines upbeat family moments, the hit song Too Easy by Canadian indie artist Connor Price, and the promise of 5G+ connectivity. The TV ad emphasizes household savings with multi-line plans, nationwide coverage, and perks like exclusive entertainment access, all while spotlighting homegrown music talent.
NTT DATA has launched a Global Microsoft Cloud Business Unit to help enterprises worldwide accelerate AI-powered cloud transformation. Backed by 24,000 Microsoft-certified specialists in over 50 countries, the unit focuses on cloud-native modernization, cybersecurity, Agentic AI orchestration, and sovereign cloud adoption. With deep integration into Microsoft’s engineering and sales ecosystem, NTT DATA aims to deliver secure, scalable, and compliant digital transformation at global scale.
Whitepaper
Explore how Generative AI is transforming telecom infrastructure by solving critical industry challenges like massive data management, network optimization, and personalized customer experiences. This whitepaper offers in-depth insights into AI and Gen AI's role in boosting operational efficiency while ensuring security and regulatory compliance. Telecom operators can harness these AI-driven...
Supermicro and Nvidia Logo
Whitepaper
The whitepaper, "How Is Generative AI Optimizing Operational Efficiency and Assurance," provides an in-depth exploration of how Generative AI is transforming the telecom industry. It highlights how AI-driven solutions enhance customer support, optimize network performance, and drive personalized marketing strategies. Additionally, the whitepaper addresses the challenges of integrating AI into...
RADCOM Logo
Article & Insights
Non-terrestrial networks (NTNs) have evolved from experimental satellite systems to integral components of global connectivity. The transition from geostationary satellites to low Earth orbit constellations has significantly enhanced mobile broadband services. With the adoption of 3GPP standards, NTNs now seamlessly integrate with terrestrial networks, providing expanded coverage and new opportunities,...

Download Magazine

With Subscription

Subscribe To Our Newsletter

Private Network Awards 2025 - TeckNexus
Scroll to Top

Private Network Awards

Recognizing excellence in 5G, LTE, CBRS, and connected industries. Nominate your project and gain industry-wide recognition.
Early Bird Deadline: Sept 5, 2025 | Final Deadline: Sept 30, 2025