Home > Information Security > Vulnerability in SIM Cards threatening 750 million phones around the world

Vulnerability in SIM Cards threatening 750 million phones around the world

image-sim-cards

Vulnerability in SIM Cards threatening 750 million phones around the world

A security researcher revealed a flaw in the old encryption method for SIM Cards allows hackers to control users phones and do some operations instead of them.

The security researcher said the German “Nol Carsten” that the vulnerability is existed in SIM Cards that uses the Data Encryption Standard DES, a criterion that was used to encrypt about three billion SIM Cards connect around the world.

He explained, “Noel” in his remarks highlighted by the newspaper “New York Times” of America that the gap allows hackers to know the  digital key  of SIM cards that uses the Data Encryption Standard DES, by sending settings fake  messages , where those cards automatically reply to the letter include the digital key of the card to the source of the fake messages .

He said he had managed the whole operation in about two minutes, using a simple personal computer. He estimates as many as 750 million phones may be vulnerable to attacks.

Mr. Nohl said he was not planning to disclose the identities of the operators whose SIM cards had performed poorly in his study at the Black Hat conference in August. But he said that he planned to publish a comparative list of SIM card security by operator in December at a computer hackers’ conference in Hamburg, Germany, called the Chaos Communication Congress.

Advertisements
  1. No comments yet.
  1. No trackbacks yet.

Comment is free

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s