Slashdot Mirror
Crashing A Nokia Phone Via SMS
Atryn writes "An article at the Register reports that a recent Black Hat conference presenter demonstrated how to crash Nokia cell phones using malformed headers in SMS messaging protocols. Though the SIM card can be recovered by moving to a new phone, this is perhaps an interesting preview of security issues as data goes wireless." Of course, when you live in the US, where your wireless services are about eight years behind the curve, this is less of an issue. *grin*
I remeber the days when a phone was actually used to call with, damn i feel old now...
Wax-Museum Fire Results In Hundreds Of New Danny DeVito Statues
once the nokia Netbsd port is done, we'll be able to protect our phones using ipf (or maybe even a pf port, if the ipf license still isn't to your liking) and should be fine.
-f
www.blackant.net
I just got back from India and Europe and am thoroughly embarrassed by our government's and wireless carriers' inability to play ball with the rest of the world. At least AT&T finally got the clue, I hope.
This talks about crashing a phone via SMS, but what about devices on CDPD or GPRS like those road signs or weather telemetry, or even electric meters in some locales. That's not only on the wireless network but on the IP network. Has anyone tried to muck with those devices yet? On most CDPD and GPRS plans the customer pays for each byte transmitted, what if someone just streams data towards a customer to run up their bill?
It's time to code firewalls and applicative filtering proxies for mobile phones...
{{.sig}}
So I guess the HandSpring Visor GSM phone I have with GSM service via Voicestream dosen't exist???
No. This is a new exploit, which I beleive does more damage. The old one just required a hard reboot (remove battery). The register article says that the phone cannot be turned back on until the message is removed from the SIM card.
-These aren't my pants.
I thought nokia phones already shipped worms out-of-the-box.
For the first time, hackers can kill. Considering the number of people who use their cell phones while driving, a random "crash" (what a terrible pun) while trying to send email or view stock quotes while driving should be enough to push a few drivers "over the edge".
The good news is that if terrorists intend to use such "crash" attempts to crash cars or other vehicles, we at least have new legislation to stop them.
If guns kill people, then CmdrTaco's keyboard misspells words.
Just like any technology, it can be used and abused. If I were the type who didn't like the word asshole, I might be justified in lamenting:
.. would you prefer to crack down on these people, and drive their activities into the underground where you are upable to keep an eye on them?
Is it at all possible to have any sort of message board without people coming along and using the word asshole?
Any other way, and you wouldn't be on planet earth, bub. Stop whining about it, and start questionting which you value more: crashable cell phones, or no cell phones?
Society must accept the inevitability of technology as an unbiased tool. Technology CANNOT be created for good. Like it or not, as a society, we must accept that when we adopted cell phones, we accepted the possibility that they may not always work, in the same way that as a society we value the use of cars more so than the lives of the thousands upon thousands of people who die as a result of them every year.
Anyone who thinks technology puts powers only in the hands of the righteous (whatever the hell that is) is a fool. In the case of Black Hats, I'd rather the concaine junkies in my neighbourhood congregate and do their thing in the middle of daylight in the park rather than at night, in allys, if you catch my drift. The fact that this was demonstrated at a conference is a good thing
"Old man yells at systemd"
Of course, when you live in the US, where your wireless services are about eight years behind the curve, this is less of an issue.
Security through Inertia. Hmm...
Napster-to-go says "Fill and refill your compatible MP3 player", which is a lie. It's not MP3. It's WMA with DRM.
I mean, look at this logo on a nokia phone. As soon as you see this logo on a phone, you know trouble is coming. I think it is some sort of curse :)
Btw, if you actually want this logo, go here.
XML is like violence. If it doesn't solve the problem, use more.
but in real life most of the US has just as good of coverage as Europe.
You obviously haven't tried using the same phone in both the U.S. and Europe. Get a tri-band GSM phone, take it to any large city in Europe, and you'll see you get much better coverage than in NYC/someother U.S. city.
Hi Slashdotters,
We here at Slashdot would like to advise you to use the following format when submitting bug-related stories.
"Crashing a [product] with [method used to crash it]"
"An article at [source] reports that [security expert] demonstrated how to crash [product] using [Pick one: buffer overflow; malformed headers; Javascript]." [insert wizened statement about how this will affect future direction of products in this category] [attach silly remarks by Slashdot writer like "Well, that's why I use [competing product]!"]
Also, please use the following template when replying:
"Those @(#&@! bastards! Who do they think they are, making [product] so buggy! Why do they have to include [useless feature that no one wants/uses anyway]?? I'll never use a [company] [product] again! Please, fellow Slashdotters, I urge you to boycott [company]!"
This will save us a lot of time and moderation points.
Thank you,
The Slashdot Team
This is exactly why these new phone PDAs worry me. You've only got to have a copy of Outlook Express running and your phone will call everyone in your Address Book or send them frisky messages.
Though my grandma might like to receive 'How are you sexy legs?', I'm not sure my boss would be quite as accepting.. (and if he is, I should quit)
mogorific carpentry experiments
"This phone has performed an illegal operation and will be shut down...if the problem persists, please call the vendor"....
Hahahahahaha...{sniff}....hehehe.
What is with the Grey screen of death comment being modded as overrated?
Geez, you'd think you would have to be rated first.
Maybe that should be submitted as a bug?
You can't fix the moderators who do that kind of stuff (maybe spayed or neutered) but can you fix the system?
Oh, well, don't worry, be happy..la la laaa
Have you read the moderator guidelines? Well, have you, PUNK? (and I want a Karma: Gnarly option)
It's probably not true that Europe is ahead because they have a standard system; as far as I can tell, they are ahead because it became fashionable in the boom of the late 80's in London particularly to have a cell phone; partly because it was a way of doing more business for the brokers- it quickly became a status symbol. A fairly affordable it became too as it grew rapidly among the city and top businessmen and filtered its way down to basically everyone.
The fashion made the economics look better, and that in turn drove more manufacturers to enter the market and compete, driving the price down further.
The other feature that killed off the other mostly non-digital systems was security. After the 'squidgy' tape loads of people would only get digital, particularly Prince Charles- and the GSM phones were a convenient digital standard to go for at that time.
Britain is an ideal place for cell phones- the population density is pretty high, so less cells are required; most people I know have a cell phone in britain. Many of them don't have a fixed line at all anymore.
Incidentally, there IS a satellite phone system- Iridium, last time I checked it was very expensive, didn't work indoors or in cities, had low quality; and the handsets are really heavy.
The military loves them.
-WolfWithoutAClause
"Gravity is only a theory, not a fact!"- Is it at all possible to have any sort of technology without assholes coming along and ruining it for everyone
Who's the bigger asshole? The one who exploits flaws in products or the one that releases products without checking for flaws that could be exploited?One could say that the "black hats" are really "white hats" in demonstrating flaws so that they do get fixed (in reality there are shades of gray in between, depending on what the discoverer does with that information).
Of course, if Microsoft had their way, we wouldn't even know about flaws such as this and have to put our faith in the vendors fixing these "secret" flaws (read: Ralph Nadar's Unsafe at any Speed). Of course, where's the motivation to fix flaws that the public doesn't know about?
I live in Minnesota, about 3.5 million people, and about twice as much land as Norway. And MN is fairly heavily populated compared to many nearby states. (which also happen to be larger) covering a valley isn't that difficult from an engeering standpoint, just put a tower there. Covering a flat field of 100 miles profitably is extreamly diffiult if the entire population of the field is less then 75. I happen to know someone who lives in that exact situation.
CDMA is a better standard than GMS overall
What I find funny about this statement is that these two are not necessarily comparable. CDMA is a radio protocol, used by both Sprint PCS and Verizon here in the USA. GSM, on the other hand, fully describes a wireless network, from the radio protocol (TDMA), to the included services (voice, 9600bps data, SMS), all the way to the SIM chip.
While CDMA may be a better radio protocol than TDMA, it is definitely not a wireless network. You can't use a Sprint phone on the Verizon network can you? As far as I know, these are separate networks with their own definitions. They just happen to share a common radio protocol.
So when someone brings up the ancient war: CDMA vs TDMA vs GSM, be sure to reorganize this into: Sprint vs Verizon vs AT&T vs GSM. This is a much more sensible comparison. Anyhow, perhaps in the future GSM's radio protocol can be replaced with a CDMA incarnation.
You do not seem to realize the success that sms has in Europe. If we follow you, why send an email when you can call the person on a phone ? Ridiculous. I am not an avid sms user but I see it can be useful in many situations :
- If you cannot talk or do not want to talk, in a lecture for example, you can still type.
- If you want to send a phone number or a complex address, it is easier for the receiver to read it than to have to write it when you talk.
- You can reuse the same message as many times as you want.
- You can type a message and send it later.
- If the network is poor and audio not working, sms still works. (I only use sms with why brother, the antenna of his phone is broken). It even saved a man's life in England.
- With sms, you can see the number of the sender and ignore it.
- you can receive personal news and services that way.
- you can have your email forwarded etc.
- etc.
Finally if you find a place where 802.11b works everywhere with phones as cheap as current ones, I will go live there !
Men are born ignorant, not stupid; they are made stupid by education. Bertrand Russel
It is fairly widely available in urban areas.
Interface-wise most CDPD adapters seem to act as network cards; IBM at least also made a CDPD modem that actually had a modem interface, but it was fairly large.
fencepost
just a little off
It's interesting that the people who have phones with text messaging find it extremely useful where as those who don't have it shrug it off with "I don't need no stinkin' text-messaging WAP shit", not even seeming to know what they are talking about, since WAP has absolutely nothing to do with text messaging and SMS messages.
Personally, I find SMS messages extremely convenient in very much the same way as email is convenient. It's a lot less intrusive than a phone call since it doesn't demand the receivers attention RIGHT NOW. It's quiet and more private, you can write and read SMS's anywhere without disturbing other people or other people disturbing you. You can use it for services. Send "FIND Joe Sixpack" to number 400 and you get the address and phone number of Joe Sixpack in return. Send "WEATHER Helsinki" and you get the latest weather forecast for the Helsinki area.
I worked in Singapore for six weeks last summer and it was extremely convenient to just bring my normal cell phone with me from Finland and everything working without any reconfiguration. Phone book entries, caller id, text messages, data. I used the phone to check my email with my Palm Pilot, Finnish news, Forumla 1 results riding home from work in a cab in the night etc.
I'm not saying that everything should be crammed into a cellular phone. Some things work better in a laptop or a PDA if you want it mobile. The point is that things like SMS and WAP, which are totally basic features of GSM phones, are quite useful and have their own place. Instead of silly "I don't need no stinkin' text messaging WAP shit on my phone" outbursts, you might want to try it out. You just might discover how nice it is and how well it works!
Population densities are very low in the US, to there day there are many miles where there is no coverage on any system. (Unless there is a satalite system now)
Australia uses multiple systems, but now supports mainly CDMA and GSM. Which is more popular? CDMA is better for covering distance - and please (unless you are posting from antartica) don't underestimate the issues faced in Australia. We have a land mass 2/3 the size of the US, but with a population of 18 million.
GSM is locked in by design to a 35 Km radius around the base station. Not an issue in say, NY, London or Europe for that matter. A big issue in Oz where your neighbour might be further away than that. Telstra (the major teleco in Australia) have modified GSM transmitters to provide a second 35-70 Km ring of coveravge from a base station. In outback Australia, you can easily get 70 km line of sight to a tower.
Despite all these limitations, GSM still wins hands down. The biggest reason? Competition I think. Being able to change service provider with a change of SIM card, rather than handset.
Plus the provision of enough features above and beyond phone - SMS messaging. Although primitive, it was flexible enough to make your phone a pager and message service in one.
In hindsight, the bandwidth limitations (9600 baud) and absence of packet radio (always on rather than dial in) features weren't enough of a liability to hold back its initial rollout.
You might call it the microsoft or VHS solution - near enough, good enough without actually being the best.
MIchael
There is no cryptographic solution to the problem where the intended receiver and the attacker are the same entity.
London status symbols undoubtably contributed to the popularity of mobile phones (that's what we call 'em ;-) but far more important is the pricing model used in the UK (and throughout most of Europe, I imagine).
:-)
We use "callING party pays", and the US uses "callED party pays".
So we don't ever pay for incoming calls (unless we go to another country) because the person calling you takes the cost hit (we have different number ranges to distinguish landlines from mobiles from porn from freephone, etc).
This encourages uptake because for the user, the initial cost to run is very little - that's the incentive to buy.
Once you have the phone, mind you, they run rings around you with all sorts of odd pricing - I, for example, can call the USA and Australia for the same price as a UK landline. In the evening, this costs me 3 cents, in the daytime, 50. Madness
Another reason for mobile phones being further ahead in Europe is that the major innovators in the industry are European. Nokia, Ericsson, Siemens to name a few of the bigger manufacturers. There are others, such as Sony and Panasonic, but they're not often on anyones 'Favourite Phone' list.
Just give me a Nokia 7650 and I'll be happy.
http://twitter.com/onion2k
My Nokia 5165 (like many other cell phones) has the ability for you to upload new ring tones and other delightful things to it. First, I was playing around with a few web sites that existed. Then I got ahold of the logic and created my own.
In my case, all I had to do was to send an email to mytelephonenumber@mobile.att.net, and it would be processed by the phone. (Great way to act as a pager, too.)
In my experiment with music ring tones, I found that it was quite easy to accidently craft a message (in my case, a new ring tone) that is malformed. And it actually hung my cell phone up.
I probably should have published this as a cool DOS attack, but then again, I really didn't know WHERE to public cell phone DOS attacks, much less what could be done to counter it, so I kept it to myself.
Play around enough, though, and you'll find your own special email you can send to a cell phone that'll lock it tight.
And don't say it's to get lower calling rates, because most cellular rates here in Australia at least would make your jaw drop with their (low) cost.
Open Source. Closed Minds. We are Slashdot.