| Title | Smartphones From 11 OEMs Vulnerable to Attacks via Hidden AT Commands | |
| Date | Monday August 27 2018, @07:39PM | |
| Author | mrpg | |
| Topic | ||
| from the +++ dept. | ||
Submitted via IRC for BoyceMagooglyMonkey
[...] Unknown to the common user is that modern smartphones include a basic modem component inside them, which allows the smartphone to connect to the Internet via its telephony function, and more.
While international telecommunications bodies have standardized basic AT commands, dictating a list that all smartphones must support, vendors have also added custom AT command sets to their own devices —commands which can control some pretty dangerous phone features such as the touchscreen interface, the device's camera, and more.
[...] Once an attacker is connected via the USB to a target's phone, he can use one of the phone's secret AT commands to rewrite device firmware, bypass Android security mechanisms, exfiltrate sensitive device information, perform screen unlocks, or even inject touch events solely through the use of AT commands.
| Links |
printed from SoylentNews, Smartphones From 11 OEMs Vulnerable to Attacks via Hidden AT Commands on 2023-07-07 00:29:10