SIM Card Vulnerability Fix Utilized the Exploit to Fix Itself

11 years ago
August 3, 2013
0 replies
503 views

JimM
Retired Webrooter
1581 replies

Karsten Nohl of Security Research Labs was scheduled to demonstrate an interesting hack involving SIM cards at Black Hat a few days ago, but his demonstration was called off due to the carriers fixing the issue in the nick of time. Nohl declined to name who the carriers were.

He discovered that a vulnerability existed where a Java flaw could be exploited by sending a specially-crafted over-the-air (OTA) cryptographically secured text message. SIM cards can contain phone numbers, contact information, and other personally identifiable information to the phone owner.

image: cnet asia

As it turns out, the unnamed carriers utlized the vulnerability themselves to hack into the SIM cards and patch them, thus leaving them unhackable again by the same exploit. So in this case, white-hat hacking saved the day.

Full story from ZDNet.

Be the first to reply!

Reply

Related Topics

Issues on UserID when you don't have a Login system (Kotlin)icon

Login user without configure on non-store platforms (like fireos apk)icon

After purchase new alias & app user id created?icon

Change subscription plan from PRO to ELITEicon

What to use for Custom App User IDicon

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded