Technololgy Review

Computing

Hijacking Mobile-Phone Data

Researchers claim to be able to hijack cell-phone data connections.

  • Friday, April 17, 2009
  • By Erica Naone
Audio » small text medium text large text

In a presentation today at Black Hat Europe, a computer-security conference in Amsterdam, a group of researchers claimed to have found a way to hijack the data sent to and from mobile phones. The researchers say that the attack might be used to glean passwords or to inject malicious software onto a device.

Mobile phones are becoming ever more useful for transmitting data in addition to making voice calls, and they're increasingly being used for sensitive activities such as online banking, as well as for searching the Internet and downloading mobile games.

The new attack relies on a protocol that allows mobile operators to give a device the proper settings for sending data via text message, according to Roberto Gassira, Cristofaro Mune, and Roberto Piccirillo, security researchers for Mobile Security Lab, a consulting firm based in Italy. By faking this type of text message, according to the protocol an attacker can create his own settings for the victim's device. This would allow him to, for example, reroute data sent from the phone via a server that he controls. The researchers say that the technique should work on any handset that supports the protocol, as long as the attacker knows which network the victim belongs to and the network does not block this kind of message.

Some trickery is required to make the attack work, however. Ordinarily, to transfer settings to a device remotely, a mobile operator will first send a text message containing a PIN code. The operator will then send the message to reconfigure the phone. In order to install the new settings, the user must first enter the PIN.

Advertisement

So an attacker would need to convince a victim to enter a PIN and accept the malicious settings sent to the phone. But Gassira, Mune and Piccirillo believe that this shouldn't be too difficult. The attacker could send text messages from a name such as "service provider" or "message configuration," suggesting that changes to the device's settings are needed due to a network error. For many handsets, they say, the results of the configuration aren't shown to the user, giving the victim little chance to notice that anything is amiss.

Print

Related Articles

Researchers Hack Mobile Data Communications

The encryption protecting mobile-device data transmission is permeable.

Eye Tracking for Mobile Control

"EyePhone" lets users browse through mobile phone menus at the blink of an eye.

How Android Security Stacks Up

An Android phone's approach to security is radically different from an iPhone's--but is it better?

Close Comments

To comment, please sign in or register

Forgot my password

mitchell.musarra

2 Comments

  • 1032 Days Ago
  • 04/19/2009

Reply

Honey Bee

4 Comments

  • 819 Days Ago
  • 11/18/2009

Re: Phone hijjacking

It is amazing, I agree with you completely

Reply

Guest (famulla)

  • 1031 Days Ago
  • 04/20/2009

CELL PHONE STEALING

If I am not mistaken the cell software in India have come up with the software that track down your cellophane. You may try this in the www.celltracker.com PDF]
CellTracker Stand 2261.023 ITU Telecom World 2003 Exhibition ...
File Format: PDF/Adobe Acrobat - View as HTML
Celltracker Ltd. provides the world's leading software solution of choice (CellTracker) for the management of network roll-outs and deployments (GSM,2G ...
www.itu.int/TELECOM/scripts/exhibition_catalogue/web_catalogue/entries/8853.pdf -
Tech Track 100 detailsCellTracker. Telecoms software developer. Sales growth ... Now his company, CellTracker, supplies this software to operators and equipment makers such as ...
www.fasttrack.co.uk/Fasttrack2002/migration/dbDetails.asp?siteID=3&compID=94&yr=2002 - 11k - Cached - Similar pages
I thank you
Firozali A. Mulla  

Reply

s.selvaratnam@gmail.com

1 Comment

  • 1031 Days Ago
  • 04/20/2009

IMSI signed setting will make it more difficult to send phishing configuration sms.

Hi All,
To add more security, the configuration sms's(like wap setting) are signed by using the IMSI value. This IMSI value is known only to the operator. If its singed by the wrong IMSI, then the mobile will not install the settings. Therefore its difficult to send the phishing configuration sms's.

Reply

Honey Bee

4 Comments

  • 819 Days Ago
  • 11/18/2009

Re: IMSI signed setting will make it more difficult to send phishing configuration sms.

THIS makes me feel better lol

Reply

Advertisement

MAGAZINE

Can We Build Tomorrow's Breakthroughs?

Manufacturing in the United States is in trouble. That's bad news not just for the country's economy but for the future of innovation.

Sponsored Content

Technologies from National Instruments

Adding Data Logging
Log measured data to a file and open it in Microsoft Excel

> Click here for more National Instruments Videos <
Whitepaper

Temperature Measurements with Thermocouples: How-To Guide

This document is part of the “How-To Guide for Most Common Measurements” centralized resource portal. This tutorial provides a detailed guide for measurement and device considerations to take temperature measurements using thermocouples. Get an introduction to thermocouples, which are inexpensive sensing devices widely used with PC-based data acquisition systems. Also review some specific thermocouple examples and learn how thermocouples work and ways to integrate them into a data acquisition measurement system.

View full PDF > Listen to story >
Find us on Youtube

Videos

A Robot Recruit that Can Do It All

More

Newsletters

Click here to subscribe to Technology Review newsletters

Computing feed

Advertisement

Technology Review Lists

TR50

Our list of the 50 most innovative companies, including the following:

Zynga

Amyris

Silver Spring Networks

Toyota

More

Advertisement

Facebook

Advertisement