Hacker Intercepts GSM Phone Calls Using a Homemade $1,500 IMSI Catcher
Hacker Intercepts GSM Phone Calls Using a Homemade $1,500 IMSI Catcher
Posted 08/01/2010 at 9:23am
| by Justin Kerr
5
Comments
Print
Chris Paget made a name for himself back in 2009 when he exposed security vulnerabilities in RFID that allowed him to wirelessly download the contents of US passports from a parked car and he’s making headlines again by exposing serious problems in the GSM cellphone network. Using nothing more than an off the shelf laptop, and a pair of RF antennas he was able to successfully imitate an AT&T cellphone tower which allowed him to intercept and record phone calls. “As far as your cell phones are concerned, I'm now indistinguishable from AT&T,” he told a crowd at this year’s DefCon security conference.
The demonstration was supposed to highlight a major flaw in the 2G GSM system which automatically directs phones to the tower with the strongest signal, apparently without proper authentication. So far the system only works on outgoing calls, but is a pretty critical flaw in the most commonly used wireless technology in the world. "GSM is broken," Paget said, "The primary solution is to turn it off altogether." I’m willing to bet carriers will take his recommendation “under advisement”, but hopefully a more reasonable fix is possible with the existing hardware.
It is unknown at this point if similar vulnerabilities exist in CDMA, but for the time being anyway, it will be the last refuge for tin foil hat wearing propeller heads who need to keep their calls private at any cost.
More like this
AlanMaclay
August 01, 2010 at 8:07pm
Hello I'm Alan from England I really like your blog it is very informative.
If you have time please check out my <a href = "http://tinyurl.com/23q8qy8"> Jackets </a> collection. Thank you so muchAlan wonder =)
reutnes
August 01, 2010 at 9:51pm
Oh so just because we're nerds we don't already have a source of fine clothes?
I kid.
Buy an ad space.
PawBear
August 01, 2010 at 4:51pm
So... it really is true. There is no longer any expectation of privacy. We can now spy on ourselves. Who needs the NSA?
KLM2010
August 01, 2010 at 4:14pm
So does this mean I can use this to boost the nonexistant AT&T service in my basement? I wonder how adjustable the range is. Also, since its a phony (pun sligtly intended) your minutes probably won't go down for outgoing calls...
I dunno, I see a lot of (probably super illegal, but reasonably moral) potential in this.
darkliquids
August 01, 2010 at 11:34am
which was posted on a vidcast called hak5, reporting from schmoocon. Fascinating stuff.
Connect with MaximumPC
Featured Content
We introduce Intel's latest class of tablet killers and review 4 of the first Ultra...
Where have all the memorable videogame enemies gone?
This month's issue
Feature
11 Hardware Hacks
Feature
Overclock Your CPU
How-To
Supercharge Your Smartphone
Build It
A Powerful $830 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Multi-Monitor Usage On The Rise http://t.co/eWfJfCEG9 hours 42 min ago
- maximumpc: Windows 8 Consumer Preview Coming On February 29 http://t.co/3Nd04FdR15 hours 30 min ago
- maximumpc: Can RIM *ever* catch a break? Not today! App World numbers not as great as previously reported http://t.co/3ERRhr311 day 11 hours ago
