Skip to main content

Carriers close SIM security hole by hacking into their own SIMs

posted onAugust 4, 2013
by l33tdawg

The flaw in the encryption technology used in some -- not all -- SIM cards, one which could allow a hacker to take over a mobile device, has been fixed in a clever fashion. Karsten Nohl of Security Research Labs in Germany, speaking at the Black Hat Security Conference on Wednesday, said that at least five carriers had closed the hole by using the same vulnerability to hack into their own SIMs and rewrite the software.

Nohl declined to name the carriers involved. Earlier, Nohl had said the flaw he had discovered existed in the encryption method called the data encryption standard (DES), which was developed in the 1970s. His testing showed that about 25 percent of those SIM cards using DES encryption were vulnerable to the hack.

Nohl said he was able to hack into a device via its SIM card in about two minutes. The flaw allows hackers to obtain a SIM card’s digital key. Once that key was obtained, Nohl said, he was able to infect the SIM card with a virus through a text message.

Source

Tags

Security Hackers Encryption

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th