P1 Security's mission is Securing Operators and Nation-states Critical Mobile Infrastructure to defend against cybersecurity threats and attacks

P1 Security

**Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities**

As 5G continues to roll out globally, operators face new attack surfaces and risks. Drawing on real-world penetration testing engagements, this webinar highlights the most critical vulnerabilities found across signaling and OAM domains in 5G networks.

During this session, you will learn about:

*   **The top security vulnerabilities discovered during P1 Security pentest activities**
*   **Emerging risks affecting ongoing 5G deployments**
*   **Practical recommendations for mitigation and remediation to strengthen resilience**

🎙️ Presented by **El Mehdi Regragui**, 5G Penetration Tester at P1 Security

📅 Date: Wednesday, October 22nd, 2025

🕒 Time: 15:00 – 16:00 CET

📍 Format: Live broadcast

🔗 Register now to secure your spot


Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities

**Exploring O-RAN Security**

**\[Webinar #10 – Thursday, July 3 | 16:00–17:00 CET]**

Open RAN (O-RAN) is rapidly gaining traction as a transformative approach to building mobile networks—bringing promises of cost efficiency, vendor interoperability, and innovation through open interfaces and disaggregated components. But while the benefits are clear, the security implications are far from fully understood.

In this technical webinar, P1 Security’s telecom security expert **Kye Grundy** explores the hidden risks and threat surfaces emerging from O-RAN deployments. We will cover real-world vulnerabilities affecting the O-DU, O-RU, and O-CU components, security gaps in interface protocols like E2 and A1, and how attackers may exploit orchestration layers and multi-vendor integration points.

You’ll also gain clarity on:

*   Common security misconfigurations in Open RAN deployments
*   The evolving threat landscape for disaggregated RAN architecture
*   Lessons learned from recent security assessments and testbeds
*   Recommendations for telecom operators and systems integrators looking to harden their O-RAN infrastructure

Whether you're involved in 5G rollouts, network security architecture, or vendor management, this session will help you understand how Open RAN security is reshaping the risk profile of mobile infrastructure—and what can be done to stay ahead of attackers.

> 🧭 **Content Level: 3/4 – Tech Overview**


Exploring O-RAN Security

P1 Security is launching the **VKB Webinar Series**, a deep dive into critical telecom vulnerabilities identified in our **Vulnerability Knowledge Base (VKB)**. This series will provide exclusive insights into real-world security threats, their impact on telecom networks, and practical strategies to mitigate risks. Led by industry experts Mahmoud Wahdan, Alexis Vernet, and Arthur Raout, each episode will break down a specific vulnerability, offering technical details and actionable solutions. Stay ahead of attackers by understanding the evolving threat landscape. Learn more about VKB [here](https://www.p1sec.com/product/vulnerability-knowledge-base) and access it directly [here](https://saas.p1sec.com/home).

### Upcoming Episode – **VKB Series #2**

📅 **Wednesday 28 May** | 🕒 **15:00 – 16:00 CET** | 🎥 **Live Broadcast**

*   **Speaker:** Arthur Raout, Cybersecurity Software Engineer
*   **Topic: Vulnerability #2349** – *Unauthenticated Remote Code Execution in Erlang/OTP SSH Server*

Join us as Arthur breaks down how this unauthenticated RCE flaw can be exploited in Erlang/OTP SSH servers, the potential impact on telecom infrastructures, and the mitigation steps you can start implementing right away.


VKB Series #2

If you want a clear and honest look at how telecom networks were actually attacked in 2025, this session is for you. TelcoSec Talk: A Deep Dive into 2025 Attacks takes you inside the real incidents that kept operators awake this year, from long running infiltrations to large scale customer data compromises.

During this live technical walkthrough, you will see how attackers moved across roaming links, abused signalling protocols, exposed SIM keys, and took advantage of misconfigurations inside 4G and 5G cores. We will show you what really happened, why it worked, and what operators could have done to catch it earlier.

Our experts, El Mehdi Regragui and Kye Grundy, break down four major attacks step by step and explain the techniques, entry points, and behaviours that matter most for defenders. If you work in mobile network security, core operations, or regulatory oversight and you want practical insight instead of generic summaries, you will get real value from this deep dive.

By the end of the session you will have a clearer picture of today’s active threats, the gaps attackers consistently target, and the concrete actions that can help reduce exposure across SS7, Diameter, GTP, SIM authentication flows, and backend systems.


TelcoSec Talk: A Deep Dive

Speakers

Kye Grundy

Telecom Security Expert

El Mehdi Regragui

5G Penetration Tester

Replays

Top 5G Security Vulnerabilities: Insights from P1 Security Pentest Activities

Exploring O-RAN Security