New User? Need help? Click here to register for free! Registering removes the advertisements.

Computer Cops
image image image image image image image image
Donations
If you found this site helpful, please donate to help keep it online
Don't want to use PayPal? Try our physical address
image
Prime Choice
· Head Lines
· Advisories (All)
· Dnld of the Week!
· CCSP News Ltrs
· Find a Cure!
· Ian T's (AR 20)
· Marcia's (QA2)
· Bill G's (CO9)
· Paul's (AR 5)
· Robin's (AR 1)
· Ian T's Archive
· Marcia's Archive
· Bill G's Archive
· Paul's Archive
· Robin's Archive
image
Security Central
· Home
· Wireless
· Bookmarks
· CLSID
· Columbia
· Community
· Downloads
· Encyclopedia
· Feedback (send)
· Forums
· Gallery
· Giveaways
· HijackThis
· Journal
· Members List
· My Downloads
· PremChat
· Premium
· Private Messages
· Proxomitron
· Quizz
· Recommend Us
· RegChat
· Reviews
· Search (Topics)
· Sections
· Software
· Statistics
· Stories Archive
· Submit News
· Surveys
· Top
· Topics
· Web Links
· Your Account
image
CCSP Toolkit
· Email Virus Scan
· UDP Port Scanner
· TCP Port Scanner
· Trojan TCP Scan
· Reveal Your IP
· Algorithms
· Whois
· nmap port scanner
· IPs Banned [?]
image
Survey
How much can you give to keep Computer Cops online?
$10 up to $25 per year?
$25 up to $50 per year?
$10 up to $25 per month?
$25 up to $50 per month?
More than $50 per year?
More than $50 per month?
One time only?
Other (please comment)



Results
Polls

Votes: 572
Comments: 14
image
Translate
English German French
Italian Portuguese Spanish
Chinese Greek Russian
image
image wireless: News by the Boss!: First Ever GSM Cellphone Exploit image
Wireless

First Ever GSM Cellphone Exploit











by Paul Laudanski, AKA Zhen-Xjell
April 20, 2004

 In an earlier news article, I had noticed that my GSM GPRS enabled cellphone was hijacked over the weekend. Last night my providers representative knew nothing about this. I was advised to call back. At about 6:30 PM EDT today I called my provider once again to discuss this issue further.

I was forwarded to an engineer with whom I was engaged in a healthy discussion. This engineer eventually went to a supervisor while I was on hold. Turns out the supervisor had *just then* received an email about the very hijack I noticed last night. The email was hot off the presses and the supervisor didn't even get to read it yet.

I was advised that my provider is now aware that the issue which I reported actually does exist. They are going to suspend downloads to their customer cellphones. A timeframe was not specified.

I immediately apprised the engineer that an article would be going up sometime tonight. The engineer stated a supervisor with authority to speak on behalf of them would call. I waited a couple hours for the phone call that never came. I suggested to the engineer that this information needs to be handled quickly to ensure public awareness of the situation and that they are working to resolve it immediately. However, that solution at the time was still unknown. I will seek legal counsel in naming the provider.

So I plead to all GSM customers to call up your provider and point them to this article. This is a HIGHLY serious issue that the engineer has confrmed exists, and the provider had at that moment notified its own front line supervisors.

Indeed, the problem is (and confimed by the GSM provider):

Phone book entries are replaced by hijackers external to your phone.

Cellphones are now open to hijacking cracks.

Is this the end of decency to our private phone books? Please note, this is a widely known GSM provider in the United States. Let the cellphone firewalls begin.
Paul

Glossary:

GSM: Global System for Mobile Communications FAQ Here
GPRS: General Packet Radio Service FAQ Here



@Copyright ComputerCops 2004
Posted on Tuesday, 20 April 2004 @ 21:02:55 EDT by Paul
image

 
Login
Nickname

Password
· New User? ·
Click here to create a registered account.
image
Related Links
· TrackBack (0)
· HotScripts
· W3 Consortium
· More about Wireless
· News by Paul
Most read story about Wireless:
First Ever GSM Cellphone Exploit

image
Article Rating
Average Score: 4.4
Votes: 5

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent

image
Options

Printer Friendly Page  Printer Friendly Page

Send to a Friend  Send to a Friend
image
"Login" | Login/Create an Account | 10 comments | _SEARCHDIS
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: First Ever GSM Cellphone Exploit (Score: 0)
by Anonymous  on Thursday, 22 April 2004 @ 00:12:29 EDT
Paul - can we talk by phone, Patrick Murphy.



Re: First Ever GSM Cellphone Exploit (Score: 1)
by Ian-OG  on Thursday, 22 April 2004 @ 00:16:44 EDT
(User Info | Send a Message)
Shouldn't be too hard to implement a firewall for the popular mobile OS's, but it's the resource hit that is worrying - especially for the older kit with a few MHz CPU and tiny RAM.

On the topic (just) this could spin off a firewall for PDAs, since I'm having no luck at all finding one for either my Psion 5 (EPOC/Symbian series 50) or iPAQ 5550 (PPC 2003).

But; I'm not sure that the FW needs to necessarily run on the handset - this sort of junk should be filtered by the service provider. And there will need to be some sort of PKI employed for the times when valid push messages need to get through (like the activation for various services, such as mobile web and GPRS).

Tough nut to crack. I suppose the short answer is to disable speed-dial or calling circle features for now.



Re: First Ever GSM Cellphone Exploit (Score: 0)
by Anonymous  on Wednesday, 21 April 2004 @ 18:45:39 EDT
Paul, can I post this on my site? I find it very interesting, the url is http://www.bornmobile.com email me: webmaster _(A|T|)_ bornmobile.com



Re: First Ever GSM Cellphone Exploit (Score: 0)
by Anonymous  on Wednesday, 21 April 2004 @ 21:21:57 EDT
I guess this is the problem with the increasing technology of mobile phones.

Symbia O/S seems to have a few security flaws, programmes that send premium rate text messages and such.

Are you 100% sure it was 'hijacked' and not actually a program you downloaded that has overwriten your contacts?

I run www.myseries60.net I will ask on there if anybody has had a similar problem.

Were you using an XDA II by any chance?



Re: First Ever GSM Cellphone Exploit (Score: 0)
by Anonymous  on Wednesday, 21 April 2004 @ 21:31:12 EDT
the old west will be coming back.

WANTED....DEAD...OR...ALIVE!!!
CELLPHONE HIJACKERS OF ANY RACE,COLOR, CREED OR NATIONAL ORIGIN.
MARSHALL DILLON
DODGE CITY



Re: First Ever GSM Cellphone Exploit (Score: 1)
by SA  on Saturday, 24 April 2004 @ 18:34:29 EDT
(User Info | Send a Message)
I'm guessing that the unamed company in Paul's post is not one of those listed at http://www.gsmworld.com/using/sas/accredited.shtml.

Not many companies are listed as GSM-approved secure at the GSMWORLD site. I wonder if the GSM security audit--its SAS, is sufficient to prevent hijacking.

I wonder if GSM org.'s SAS is the only choice for safety-conscious companies who want to know how secure they are, or are there lists of safe-conscious companies elsewhere.

SA


Home · Topics · Submit News · Top 10
This entire site, Cops Themes, and Computer Cops are © 2002 - 2004 Computer Cops, LLC. All rights reserved.
You can syndicate our news using the file RSS 0.91, ultramode.txt, or RSS 1.0.
Acceptable Use Policy. Use signifies your agreement.
Engine Copyright © 2002 by PHP-Nuke, GNU/GPL Licensed. ICRA Member.
Paul Laudanski, Member of Computer Cops, LLC
Server Load: 697 pages served in previous 5 minutes. Page Generation: 0.419 seconds.