Telcos riddled with security holes: #HITB2012KUL Researcher
A security industry veteran has criticised telecommunications equipment vendors for supressing knowledge of vulnerabilities that could result in hundreds of millions of dollars worth of network outages.
In a presentation to Hack In The Box Malaysia (pdf), P1 Security director Philippe Langlois described how a single malformed network packet could disable a carrier's GSM subscriber database.
Hackers could send malformed packets from any network, or femtocells, to crash carriers' Home Location Register server clusters, which store GSM subscriber details as part of the global SS7 network, he explained. Eighty-three percent of telco operators did not apply traffic filtering over the SS7 network, he said. "We were able to remotely crash HLR frontend for two minutes each by sending one malformed packet," Langlois said, citing a 2010 test.