dearJulius.com

Second SIM card attack can send texts and phone location data


By Jon Fingas, Engadget

Simjacker isn't the only SIM-based attack that could put phones at risk. Ginno Security Lab has detailed another exploit, WIBattack, that compromises the WIB (Wireless Internet Browser) app on some SIM cards to take control of key phone functions. Like its counterpart, WIBattack infects a phone through a carefully formatted SMS text that runs instructions on cards that don't have key security features enabled. If successful, the intruders can send texts, start calls, point your web browser to specific sties, display text and send location info.

The vulnerability could be used to track a device's location, point users to phishing websites and rack up fees on calls to toll numbers, among other tricks. Ginno has briefed the GSM Association on WIBattack, although it's not clear what if anything the industry body is doing to address the issue.

It's not certain just how many people are truly vulnerable. While Ginno warns that "hundreds of millions" of phones with WIB-capable SIM cards might be at risk, ZDNetobtained an SRLabs report suggesting the real number of potential victims might be considerably lower. Out of 800 tested cards, only 10.7 percent had WIB installed, and 3.5 percent of them were vulnerable to a Simjacker-like attack.

There's also the question of whether or not this would be the most effective method for would-be attackers. It may be easier to try SIM hijacking (which can simply involve less-than-scrupulous carrier staff) or an SS7 exploit. Still, this is another significant flaw that may be difficult to completely eliminate until networks and users upgrade to more secure SIMs.

COMMENTS





Note: If you think this story need more information or correction, feel free to comment below your opinion and reaction.
Name

AI,14,Amazon,32,Apple,141,Apps,20,Bitcoin,1,Computers,23,Emoji,1,Entertainment,2,Facebook,105,Gadgets,26,Games,191,Google,93,Huawei,11,Industry,161,Instagram,16,Internet,50,LinkedIn,1,Microsoft Windows,3,Mozilla,1,OS,1,Samsung,59,Science,540,Security,21,Smartphone,92,Social,38,Tech,525,Tesla,6,Twitter,24,VR,5,
ltr
item
Technology News: Second SIM card attack can send texts and phone location data
Second SIM card attack can send texts and phone location data
https://1.bp.blogspot.com/-QB4dyQs_vL4/XZDQVjq6-dI/AAAAAAABJlw/3rIGuNfCg0ElMllReXsgy_asZfdrh9tXQCLcBGAsYHQ/s1600/1.jpg
https://1.bp.blogspot.com/-QB4dyQs_vL4/XZDQVjq6-dI/AAAAAAABJlw/3rIGuNfCg0ElMllReXsgy_asZfdrh9tXQCLcBGAsYHQ/s72-c/1.jpg
Technology News
https://tech.dailynewsview.com/2019/09/second-sim-card-attack-can-send-texts-and-phone-location-data.html
https://tech.dailynewsview.com/
https://tech.dailynewsview.com/
https://tech.dailynewsview.com/2019/09/second-sim-card-attack-can-send-texts-and-phone-location-data.html
true
6158722151415702542
UTF-8
Loaded All Posts Not found any posts VIEW ALL Read More Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy