Thursday, September 24, 2020
Home Lead Story Vulnerability in 4G May Help Hackers To Impersonate You: Researchers

Vulnerability in 4G May Help Hackers To Impersonate You: Researchers

For a successful attack, the attacker must be in the vicinity of the victim's mobile phone, said the researchers

Researchers have found a serious vulnerability in LTE/4G mobile communication standard that can help hackers impersonate other phone users, take a streaming service subscription at your expense or publish secret company documents under someone else’s identity.

The vulnerability — which affects virtually all mobile phones, tablets and some connected household appliances — may also hamper investigations of law enforcement agencies because attackers can not only make purchases in the victim’s name but can also access websites using the victim’s identity.

For example, an attacker can upload secret company documents and to network operators or law enforcement authorities, it would look as if the victim is the perpetrator, said researchers from Ruhr-Universitat Bochum public university.

“An attacker can book services, for example stream shows, but the owner of the attacked phone would have to pay for them,” said Professor Thorsten Holz from Horst Gortz Institute for IT Security.

Only changing the hardware design would mitigate the threat. The team is attempting to close the security gap in the latest mobile communication standard 5G, which is currently rolled out.

“Mobile network operators would have to accept higher costs, as the additional protection generates more data during the transmission. In addition, all mobile phones would have to be replaced and the base station expanded. That is something that will not happen in the near future,” said David Rupprecht.

The problem is the lack of integrity protection: data packets are transmitted encrypted between the mobile phone and the base station, which protects the data against eavesdropping.

However, it is possible to modify the exchanged data packets. “We don’t know what is where in the data packet, but we can trigger errors by changing bits from 0 to 1 or from 1 to 0,” said Rupprecht. By provoking such errors in the encrypted data packets, the researchers can make a mobile phone and the base station decrypt or encrypt messages.

Hackers
Researchers have found a serious vulnerability in LTE/4G mobile communication standard that can help hackers impersonate other phone users, take a streaming service subscription at your expense or publish secret company documents under someone else’s identity. Pixabay

They not only can convert the encrypted data traffic between the mobile phone and the base station into plain text, they can also send commands to the mobile phone, which are then encrypted and forwarded to the provider – such as a purchase command for a subscription.

The researchers from Bochum used so-called software-defined radios for the attacks. These devices enable them to relay the communication between mobile phone and base station. Thus, they trick the mobile phone to assume that the software-defined radio is the benign base station; to the real network, in turn, it looks as if the software-defined radio was the mobile phone.

ALSO READ: India’s Cooperation With Russia For AI Innovation May Reach Level of Strategic Sector Soon

For a successful attack, the attacker must be in the vicinity of the victim’s mobile phone, said the researchers. (IANS)

STAY CONNECTED

19,143FansLike
362FollowersFollow
1,774FollowersFollow

Most Popular

Microsoft Study Shows Pandemic has Increased Feeling of Burnout Among Workers

If you've been feeling overwhelmed at work lately, you are not alone as a new Microsoft study has shown that the pandemic has increased...

Lower Zinc Levels in Blood Linked to Higher Death Risk in Covid Patients: Study

In a major study, researchers have found that having a lower level of zinc in the blood is associated with a poorer outcome in...

Time Magazine List of 100 Most Influential People: Ayushmann Khurrana Among 5 Indians

Indian actor Ayushmann Khurrana is in the Time magazine list of 100 Most Influential People this year. Follow NewsGram on LinkedIn to know what's happening...

Return to Usual Sexual Activity After Heart Attack for Long-Term Survival

Returning to usual levels of sexual activity within a few months after a heart attack is positively associated with long-term survival, say researchers. According to...

Researchers Find Potential New Drug Candidate Against Enterovirus

Some good news in the search for antiviral drugs for hard-to-treat diseases as researchers have identified a potential new drug candidate against enterovirus 71,...

Stroke Patients With Covid-19 Show Increased Inflammation, Death Rate: Researchers

Stroke patients who also have Covid-19 showed increased systemic inflammation, more serious stroke severity and a much higher rate of death, compared to stroke...

Playing Video Games in Childhood Can Improve Working Memory Years Later

In a good news to video game lovers, researchers have found that playing video games as a child can improve working memory years later. The...

Know the Negative Impact of Covid-19 Lockdown on Kids

Children, who appear at a relatively lower risk from Covid-19, are disproportionately harmed by precautions involved with lockdowns, warn researchers. Experts from Oxford University Hospitals...

Recent Comments