Slashdot Mirror

← Back to Stories (view on slashdot.org)

Your Phone Number Is All a Hacker Needs To Read Texts, Listen To Calls and Track You (theguardian.com)

Posted by msmash on from the challenge-for-the-day:-act-surprised dept.

Samuel Gibbs, reporting for The Guardian: Hackers have again demonstrated that no matter how many security precautions someone takes, all a hacker needs to track their location and snoop on their phone calls and texts is their phone number. The hack, first demonstrated by German security researcher Karsten Nohl in 2014 at a hacker convention in Hamburg, has been shown to still be active by Nohl over a year later for CBS's 60 Minutes. The hack uses the network interchange service called Signalling System No. 7 (SS7), also known as C7 in the UK or CCSS7 in the US, which acts as a broker between mobile phone networks. When calls or text messages are made across networks SS7 handles details such as number translation, SMS transfer, billing and other back-end duties that connect one network or caller to another. By hacking into or otherwise gaining access to the SS7 system, an attacker can track a person's location based on mobile phone mast triangulation, read their sent and received text messages, and log, record and listen into their phone calls, simply by using their phone number as an identifier.Also from the report, "60 Minutes contacted the cellular phone trade association to ask about attacks on the SS7 network. They acknowledged there have been reports of security breaches abroad, but assured us that all U.S. cellphone networks were secure." Update: 04/18 16:51 GMT by M :Reader blottsie writes: U.S. Rep. Ted Lieu (D-Cali.) on Monday called for a full congressional investigation into the aforementioned widespread flaw in global phone networks.

4 of 98 comments (clear)

  1. Re:Wasn't SS7 used by the phreaks? by Anonymous Coward · · Score: 5, Informative

    SS7 was the telco's efforts to block MFers using the "blue box"; Switching from in-band signalling to out-of-band signalling.

    SS7, however, provides some inter-carrier connectivity to enable roaming between carriers; With an IMSI, the visited network can ask the home network "can I give this IMSI service?"... and a deactivation from the home carrier's network to the visited carrier's switches can turn the phone off (used to suppress roaming fraud).

  2. Re:May as well walk around naked by Anonymous Coward · · Score: 2, Informative

    Estimating Community Drug Abuse by Wastewater Analysis, Environ Health Perspect. 2008 Aug; 116(8): 1027–1032.

    Wastewater analysis and drugs — a European multi-city study

  3. No, encryption is between the phone and cell base by mimino · · Score: 5, Informative

    No, the encryption is between the phone and base station, not inside SS7 network.

  4. Re:Total bullsh*t by Anonymous Coward · · Score: 2, Informative

    Using the MSISDN you can get the IMSI from HLR using the right MAP operation, using the IMSI you could activate call forwarding unconditional for incoming calls loop it through your listening device and start listening to incoming calls, I am not sure how you would be able to listen in on outgoing calls. I am also not sure how the looking at text messages would work without having access to communication at the right place.