as far as i understand, there are no operators in Europe (maybe UK) anymore that don't run filtering on SS7. btw: SS7 is the legacy system and not part of 4G/5G.
My colleagues who do intrusion testing (for operators e.g.) tell me: We have not seen SS7 attacks in Europe for long time. The remaining attack surfaces are in the middle-east and north america.
That's promising! It's now 5 years ago, but Telenor had a fairly big outage caused by malformed SS7 inbound signalling. Not sure if there's been anything since, but it certainly was an issue relatively recently.
Hopefully with the (slow) move to 4G and IMS calling, we can turn the page on SS7 attacks soon.
