3G security flaw leaves smartphone users at risk of hackers
People using smartphones and other mobile internet devices can be tracked by hackers exploiting a flaw in their 3G connections, security experts have said.
Researchers at the University of Birmingham and Technical University of Berlin found that a weakness with the 3G system’s security feature meant that devices’ physical locations could be identified at any time with relative ease, using readily available equipment.
“Such a possibility would enable all kinds of undesirable behaviour, ranging from criminal stalking and harassment to more mundane monitoring of spouse or employee movements, as well as profiling for commercial and advertisement purposes,” the team wrote in their paper ‘New Privacy Issues in Mobile Telephony: Fix and Verification’.
The 3G system, which is used by most mobile internet devices to connect, deploys a temporary identity in order to mask its actual identity, which includes its location at any time. However, the team found a way of circumventing that protection using a femtocell.
“We have shown that the protocols are vulnerable to new privacy threats and that these threats lead to attacks that can be mounted in practice at low cost,” they wrote. And, because it is a part of the very system, it potentially affects every device using 3G to connect to the internet.
The researchers added: “the attacker does not need to know any keys, nor perform any cryptographic operation. This kind of vulnerabilities usually look trivial once uncovered but often remain unnoticed for long time, since they do not involve fancy cryptography but are caused by errors in the protocol logic.”
The team tested phones on the T-Mobile, O2, and Vodafone networks, as well as the French SFR network, all of which were found to be vulnerable.
Life & Style blogs
McDonald's is finally trialling all-day breakfast
Apple expands reuse and recycle scheme, letting Android phones be swapped for iPhones
Replica Back to the Future Hoverboard released
When did the Eiffel Tower open to the public? Six things you didn't know about iconic structure
Contents of women's handbags can be worth more than a small car
Ukip supporters are 55 or older, white and socially conservative, finds British Social Attitudes Report
Street preacher quoting from the Bible fined for calling homosexuality an 'abomination'
Jeremy Clarkson sacked live: Alan Yentob 'wouldn't rule out' ex Top Gear host's BBC return
Woman filmed launching racist tirade against men on the Tube for speaking in 'own lingo'
The West has it totally wrong on Lee Kuan Yew
David Cameron calls Labour 'hopeless, sneering socialists' while announcing 7-day NHS plans
- 1 Replica Back to the Future Hoverboard released
- 2 Katie Hopkins attacked me on Twitter — so I reported her to the police for inciting racial hatred
- 3 Tidal: Jay Z's Spotify rival streaming service criticised for making wealthy artists even richer
- 4 Brixton squat flats now costing up to £3k per month show how out of control rent is in London
- 5 A new (old) cure for MRSA? Revolting recipe from the Dark Ages may be key to defeat infection
iJobs Gadgets & Tech
£25000 - £40000 per annum: Recruitment Genius: This fast growing digital agenc...
£58000 - £65000 per annum: Ashdown Group: SQL DBA - Bromley, South East London...
£55000 - £65000 per annum + Benefits: Ashdown Group: Service Delivery Manager ...
£25000 - £35000 per annum: Recruitment Genius: A Software Developer is require...