http://seclists.org/fulldisclosure/2011/Aug/76



It's not clear yet just how bad this is. Whether eavesdropping in on phonecalls is possible with this hasn't been made clear yet. There seems to be a non-disclosure agreement keeping the exploit details from being published at the moment, or otherwise it hasn't been released yet (it wasn't a panel).

What this potentially means is that cellphones are completely and undeniably the biggest security and privacy risk for anyone. CDMA had thus far stood up as being resiliant to all attempts to break in. The entry costs were huge and the crpto seemed good. Only time will tell if this is as bad as the GSM hack (GSM can be eavesdropped on for as little as $200 with enough effort, otherwise $2000 will get a person the equipment necessary to eavesdrop, reroute phonecalls, read text messages, drop your service, potentially gain access to your phone's contacts and other personal information, etc --- Yeah, GSM is a totally broken horse, BTW: This has been true for about 3 years now, 6 years if you had a better budget)

So maybe it's time to start considering carrier pigeons again? At the least, please be aware that your phone conversations are easily compromised and be careful


Oh, and of course this means nothing to Europeans: You guys are completely stuck with the totally-utterly-ridiculously broken GSM that all your phonecalls are probably being recorded already

I have no idea what I just read... but I'm frightened by it.

As long as it only affects cell phones then I'm not affected, but this seems like it could be a very bad thing if it's widespread.

THIS!
I'm guessing the government (or someone else) is spying on cell phones. Nothing new here.

Someone else, basically anyone else. 4G being hacked would mean someone could redirect your mobile web browsing and send you to phishing sites. They then get your username and password and, since most people use the same password for all sites, they could then go steal money from their bank account and do all sorts of other fun things.

Well damn.

Thankfully, I use a password manager now. And I use KeePassDroid on my phone.

But seriously? Ring 0? Geez...

Nah, during WW2 germans trained falcons to catch allies carrier pidgeons. If you want to communicate safely, talk to yourself in a soundproof room :teehee:

http://www.youtube.com/watch?v=HwBmPiOmEGQ

In a windowless soundproof room?

One of my favorite panels from the Chaos Communication Congress last year was Baseband Apocalypse. Part of it covered how to run arbitrary code and do buffer overflow attacks over GSM against iPhones (and a few other potential phones) All for only $1000. Another part of it covered briefly a potential use to remote control other people's cars that are GSM-enabled... while they are still in it.

http://www.youtube.com/watch?v=TzR7R6fBr00&t=50m10s