PDA

View Full Version : IS this an issue with Vodafone NZ Femtocells?



johcar
15-07-2011, 10:29 AM
http://www.theregister.co.uk/2011/07/14/vodafone_femtocell_hack/

mikebartnz
15-07-2011, 11:57 AM
http://www.theregister.co.uk/2011/07/14/vodafone_femtocell_hack/
I would assume it was the same hardware so would have the same issues.

Chilling_Silence
15-07-2011, 02:09 PM
Yes, but that kind of hack has been around for years...

ubergeek85
15-07-2011, 11:30 PM
http://wiki.thc.org/vodafone is the original source. I'm still reading it now, so can't fully comment on it, but it looks like it can be turned into a man-in-the-middle device. That sort of attack has been around for a while on GSM networks, however this makes it piss easy. Earlier attack hardware cost thousands, usually custom-built, this is just a few hundred dollars.

The Error Guy
15-07-2011, 11:38 PM
Looks like fun :devil

ubergeek85
15-07-2011, 11:54 PM
Still reading, it looks like the main vulnerability is that the device unencrypts traffic itself, instead of just passing encrypted traffic on to the core network.

Snooping on voice calls is pathetically easy, just a quick bit of ipsec reconfig then it's wireshark and then anything that can play AMR-format audio.

Quite poor design really.