Network Security Huawei zero-day flaw reportedly caused Luxembourg telecom outage May 20, 2026 Share By SC Staff (Sean Gallup/Getty Images) As detailed in Security Affairs, a nationwide telecom outage in Luxembourg on July 23, 2025, was reportedly caused by an undisclosed flaw in Huawei enterprise routers. The incident disrupted landline, 4G/5G, and emergency services for over three hours. The outage was triggered by specially crafted network traffic that exploited a previously unknown vulnerability in Huawei enterprise routers, forcing them into continuous reboot loops. Paul Rausch, head of communications at POST Luxembourg, confirmed the attack targeted a network device using a non-public, undocumented behavior for which no patch was available. Investigators determined it was not a typical volumetric DDoS attack and did not appear to be a targeted attack against POST Luxembourg, with no criminal charges filed. Evidence suggests the traffic exploited an undocumented failure in the Huawei routers, causing repeated crashes. Huawei stated they had not seen the attack before and had no immediate fix, with no similar attacks observed afterward. Concerns remain about the lack of public disclosure, as no CVE or advisory was issued, leaving questions about whether similar systems are still exposed. Source: Security Affairs An In-Depth Guide to Network Security Get essential knowledge and practical strategies to fortify your network security. Learn More SC Staff Related Cloud Security SASE manages your network access, but who manages your SASE? Anthony Lobretto May 19, 2026 SASE adoption is easier than ever, but expertise gaps still create major security and access risks. Vulnerability Management 10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list Steve Zurier May 15, 2026 Maximum-severity bug an authentication bypass flaw that’s considered the highest value target in an attacker’s playbook. Security Operations Fragmented DDoS campaign bypasses defenses with novel ‘low and slow’ approach SC Staff May 8, 2026 The attack, identified by DataDome's Galileo threat research team, utilized a vast infrastructure, distributing traffic across over 1.2 million unique IP addresses and 16,402 distinct Autonomous Systems (ASNs). Related Events Cybercast How to transform your SOC through XDR and MDR On-Demand Event Cybercast AI for network security: Problems and solutions On-Demand Event Virtual Conference Fortifying the Foundation: Tackling Evolving Challenges in Network Security On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms ACK Piggybacking Address Resolution Protocol (ARP) Broadcast Cache Poisoning Circuit Switched Network Computer Network Datagram Decapsulation Domain Domain Name You can skip this ad in 5 seconds