• Announcements

    • Reminder - MoDaCo position on illegal content   07/30/15

      ILLEGAL CONTENT I'd like to just reaffirm MoDaCo's position regarding piracy and illegal content in the light of some recent questions / postings. Posts will be censored by myself or my moderation team if the contain or link to: Illegal / pirated / cracked software or sites that host such softwareNintendo emulators / ROMs or sites hosting them (in light of Nintendo's legal stance)CUSTOM ROMS You may discuss and post links to custom device ROMs on MoDaCo, provided the following rules are adhered to: ROMs must not contain any illegal 3rd party software (this includes trial versions included without permission)ROMs must give full credit to the original authorISSUES If you have any issues with this policy, please contact PaulOBrien directly via PM.
    • Reminder: Selling items on the forum directly is not allowed   07/30/15

      Please note that selling items on the forum directly is not allowed by the forum rules. There is a forum for eBay auctions whereby you can list the items on eBay and link to them there. This is the ONLY forum for this type of activity. You may also advertise links to the eBay forum in your signature. Please note that selling directly in contravention of these rules will result in a warning / suspension / ban.

Huge GSM flaw allows hackers to listen in on voice calls

2 posts in this topic

Posted

thumb_26-Aug-2009_gsm.jpg
Huge GSM flaw allows hackers to listen in on voice calls

Seems that someone has found a flaw with the GSM encryption, which is used on mobile phones all over the world during the Hacking at Random (HAR) conference in Netherlands. So bad, they are saying it's a "massive flaw".

Recently at the Hacking at Random (HAR) conference, held in the Netherlands, Karsten Nohl detailed plans for cracking standard GSM cell phone encryption, known as A5/1, and will be making the results available for anyone to use. GSM stands for Global System for Mobile communications and is the most commonly used cell phone standard in the world, and is used in Europe, Africa, Asia, New Zealand, Australia, America and Canada.

The GSM flaw is massive and would affect not only businesses but individuals also as once the hack is complete it means anyone with a $500 radio card and a laptop will be able to listen in to GSM calls, making it easier for criminals to obtain personal data and making listening in on normal voice calls a real and everyday threat.


It also mentioned that it has been "known" since 1994, but wasn't actually found by someone until now. This is a bit worrying. Hopefully this is being looked at soon, or get the telecoms to move over to the newer technology which doesn't have this flaw.

Thankfully I don't do online banking on my phone, but I'm not sure about other people who does that.

Do you think this is being overhyped? Or is this a great cause of concern? Will you stop doing anything confidential on your phone?

[Via: Neowin]
0

Share this post


Link to post
Share on other sites

Posted

http://www.theregister.co.uk/2009/08/25/gsm_cracked/

Slightly more factually accurate and links back to the source story in the Financial Times rather than using wooly terms like 'recently' 'would' 'could' 'may' etc..

In theory, *anything* can be cracked, so 'potentially being known since 1994' is moot, it's being *done* in realtime without a supercomputer thats the killer, and it's unlikely that in 1994 ( or even 1996 when it was first suggested) that any home computer would manage to do this.

People talk all the time, for example about cracking Sky's viewing card encryption. Doesn't mean it's ever likely to happen.

From my understanding you'll need to be in the same cell range of the handset you're 'spying' on it's not a case of plugging in a phone number and listen away - it eavesdropes on the communication between the handset and the tower, and also assumes a little bit of trial and error to find the feed if you are being spied upon.

Fuss about nothing. Plus 3G handsets use the stronger encryption even over the 2.5G network so all newer handsets are fine. For now..... ;-)

M.S

0

Share this post


Link to post
Share on other sites

MoDaCo is part of the MoDaCo.network, © Paul O'Brien 2002-2015. MoDaCo uses IntelliTxt technology.