Stories
Slash Boxes
Comments

SoylentNews is people

posted by mrpg on Monday August 27 2018, @07:39PM   Printer-friendly
from the +++ dept.

Submitted via IRC for BoyceMagooglyMonkey

[...] Unknown to the common user is that modern smartphones include a basic modem component inside them, which allows the smartphone to connect to the Internet via its telephony function, and more.

While international telecommunications bodies have standardized basic AT commands, dictating a list that all smartphones must support, vendors have also added custom AT command sets to their own devices —commands which can control some pretty dangerous phone features such as the touchscreen interface, the device's camera, and more.

[...] Once an attacker is connected via the USB to a target's phone, he can use one of the phone's secret AT commands to rewrite device firmware, bypass Android security mechanisms, exfiltrate sensitive device information, perform screen unlocks, or even inject touch events solely through the use of AT commands.

Source: https://www.bleepingcomputer.com/news/security/smartphones-from-11-oems-vulnerable-to-attacks-via-hidden-at-commands/


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 1) by nitehawk214 on Monday August 27 2018, @07:50PM (1 child)

    by nitehawk214 (1304) on Monday August 27 2018, @07:50PM (#727103)

    I was going to post a comment with the title "ATDT8675309"

    I did not know that AT commands were still a thing.

    --
    "Don't you ever miss the days when you used to be nostalgic?" -Loiosh
  • (Score: 2) by EETech1 on Tuesday August 28 2018, @03:12AM

    by EETech1 (957) on Tuesday August 28 2018, @03:12AM (#727218)

    Jenny has probably long since changed her number anyway:(