Stories
Slash Boxes
Comments

SoylentNews is people

Is It Still Possible to Do Phone Phreaking? Yes, With Android on LTE

posted by janrinok on Wednesday October 21 2015, @03:59AM   Printer-friendly
from the old-shall-become-new-again dept.

Phoenix666 writes:

But South Korean researchers say they've found several weaknesses in VoLTE networks in the U.S. and South Korea.

Their findings, released in a research paper, conclude that it would be possible to spoof phone calls, conduct denial-of-service attacks and overbill customers. They also found it would be possible for a malicious Android app to make secret phone calls in the background due to a flaw in the mobile OS.

The fault also lies in part with operators, which haven't full[y] vetted their infrastructure for security issues. Also, LTE standards have been implemented in different ways by operators, opening up a variety security holes.

"Basically, there are mistakes and things they have overlooked," said Yongdae Kim, a professor with the Korea Advanced Institute of Science and Technology's (KAIST) electrical engineering department, in a phone interview Tuesday.

T-Mobile, Verizon and AT&T were notified of the issues in May, according to an advisory updated on Monday from Carnegie Mellon University's CERT. None of the companies had an immediate comment.

Original Submission

 
This discussion has been archived. No new comments can be posted.
Is It Still Possible to Do Phone Phreaking? Yes, With Android on LTE | Log In/Create an Account | Top | 10 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Offtopic) by TheGratefulNet on Wednesday October 21 2015, @04:05AM

    by TheGratefulNet (659) on Wednesday October 21 2015, @04:05AM (#252600)

    yes, I keep beating on google. look, if they weren't such dicks, there, acting all superior and 'smarter than thou' I would not be so hard on them. but when you sell yourself as the smartest people in the world (they constantly imply that) then I have no pity when their shit blows up.

    instead of focusing on STABILITY and security, they are the short-attention-span company of the decade. they give up so soon, they have short memories, they abandon more things than they really should; and they keep adding stupid features to android and yet won't backport security or even do PROPER security on their stupid o/s.

    sorry, but I give them a D- (at best) in their effort. if it was a 100 man company, I'd be much easier on them, but they have more money than god and there's NO EXCUSE for the pile of steaming shit that is android, given their might and manpower resources.

    my 4.4 phone will probably never have a functional vpn. google leaves the bug open and marks it wontfix. 'upgrade to 5.x for a fix'. no, fuck you, google. fix your damned bugs and be serious for a change.

    oh, who am I kidding. they are not at all a serious company. they just convinced a lot of people that they are. but their software speaks for itself. and their corp attitude, too.

    --
    "It is now safe to switch off your computer."
    Starting Score:    1  point
    Moderation   +1  
       Offtopic=1, Insightful=1, Informative=1, Overrated=1, Touché=1, Total=5
    Extra 'Offtopic' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   3  

  • (Score: 3, Informative) by frojack on Wednesday October 21 2015, @06:14AM

    by frojack (1554) on Wednesday October 21 2015, @06:14AM (#252617) Journal

    What the hell does this have to do with this story?

    The story isn't even about flaws in Andorid, but rather weaknesses in VOLTE. You can exploit them with any SIP client.

    --
    No, you are mistaken. I've always had this sig.