Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Seeking more info on: Devastating mobile attack under spotlight

From: Robert Clark <Robert.Clark () cern ch>
Date: Mon, 27 Nov 2006 18:31:51 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Paul Wouters wrote:


Phone operators use SMS messages to make changes to their customers'
phone without user intervention. These changes can vary from small
tweaks to an overhaul of the phone's internal systems.


I thought those messages only set some phone numbers, such as the
SMS center, preference of roaming providers, etc. That's not an
"overhaul".


Whilst not an "overhaul" is it not feasible that a changing these
settings could be extremely useful to a would be attacker?

A MiTM on SMS using a change to the message centre number for example...

- --
/**
  * Robert Clark
  * Technical Student ALICE/DAQ
  * Software Engineer CERN PH/AID
  * Phone: (+41) (0)22 767 8338
  */
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFFayEHEZx+NSIX0WgRAogVAKDFBwGoXYG+oI3D/vuuA2xMY3dkggCfSpSd
YwMVRFir4Xng+0cDYfVDTss=
=PyDy
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: