Небезопасность сотовых сетей вчера, сегодня, завтра

•

0 likes•427 views

The SS7 protocol from the 1970s that underlies modern mobile networks has many vulnerabilities that can be exploited. Attackers can intercept calls and SMS messages, track locations, disrupt service, and gain access to banking and social media accounts through SS7 attacks. While new protocols like Diameter aim to address issues, vulnerabilities still exist that allow intelligence gathering and disrupting subscriber services. The growth of IoT connectivity may expand the potential impact and scale of attacks on telecommunications networks.

Technology

ptsecurity.ru
Insecurity of mobile networks:
Yesterday - Today – Tomorrow
Kirill Puzankov
Sergey Mashukov
Pavel Novikov

SS7 Vulnerabilities
More than 50 different SS7 attacks:
• IMSI disclosure
• Location Discovery
• Subscriber DoS
• SMS interception and spoofing
• Calls interception
• Reading chats of Telegram,
WhatsApp

How to Get Into Telecom Networks
Legal with license
Semi legal without Find a guy Hack a border device

How to Intercept SMS
• A virus on a smartphone – and what if a certain
subscriber is a target? How to infect him
particularly?
• Reissue SIM? It works only once.
• Radio signal interception (GSM A5/1)? You need to
be nearby.
• Via SS7 network

Interception of incoming SMS messages
Messages:
SRI4SM – SendRoutingInfoforSM Procedure
UL – UpdateLocation Procedure

Possibilities for adversary
• Recover passwords for email and social
networks
• Access to payment service
• Online banking OTP

Recent case
• Send malware to get bank
account details and mobile
number
• Intercept SMS with OTP for the
rogue transaction

New Diameter – old threats
SS7 Diameter
Interception
Tracking
DoS on subscriber
DoS on network equipment
Fraud

LTE nodes
• HSS – Home Subscriber
Server
• MME - Mobility
Management Entity
• S6a interface defined in
3GPP specification:
TS29.272
Scheme. EPC nodes and interfaces / Joe Deu-Ngoc / CC BY-SA 4.0

Intelligence gathering
IMSI Disclosure
1. Vulnerabilities in the SS71
2. IMSI-catcher
3. WiFi-based IMSI-catcher2
4. Web-based Number Lookup Services
5. Vulnerabilities in the Diameter
1 - SIGNALING SYSTEM 7 (SS7) SECURITY REPORT (https://www.ptsecurity.com/upload/corporate/ww-en/analytics/SS7-Vulnerabilities-eng.pdf)
2 - WiFi-Based IMSI Catcher (https://www.blackhat.com/docs/eu-16/materials/eu-16-OHanlon-WiFi-IMSI-Catcher.pdf)

Disrupting subscriber service
Messages:
ULR - Update-Location-Request (S6a)
ULA - Update-Location-Answer (S6a)
CLR - Cancel-Location-Request
CLA - Cancel-Location-Answer
Attacker sends ULR message to
HSS with IMSI of subscriber whom
should be disconnected

Interception of incoming SMS messages
Messages:
SRR - Send-Routing-Info-for-SM-Request (S6c)
SRA - Send-Routing-Info-for-SM-Answer (S6c)
ULR - Update-Location-Request (S6a)
ULA - Update-Location-Answer (S6a)

Disrupting subscriber service
• To make someone unavailable.
• To cause reputational damage.
• What else?

Telco and IoT
Internet of Things is a huge army of “new
desirable clients” for telecoms when most of the
human clients are covered

Telco and IoT
https://blogs.sap.com/wp-content/uploads/2015/03/internetofthingshorizontal1_653122.png
• EC-GSM-IoT
• NB-IoT
• LTE-M
• 5G
• LoRa?

This document outlines the agenda for a live hacking presentation hosted by SySS GmbH. The presentation will demonstrate various hacking techniques, including DDoS attacks, wireless keyboard attacks, mobile app and web service attacks, SMS spoofing, and attacks against crypto USB sticks. It will provide an overview of the speaker and SySS GmbH, and discuss recent cybersecurity incidents from 2015. The presentation aims to educate attendees on digital threats and the importance of security assessments and regular security testing. Live demonstrations will include antivirus evasion, mobile phone trojans, SQL injection, and cross-site scripting.

Firewall ppt

saloni mittal

Network security and System Admin

MD SAHABUDDIN

Managed Firewall

Codero

SECURE YOUR NETWORK FROM THE INSIDE OUT

Len Moncrieffe

NetSHIELD is a network access control solution that provides agentless protection from internal threats like malware, phishing, and rogue access across physical, mobile, virtual, and IoT devices. It ensures only trusted assets can access corporate networks, and offers features like zero-day malware and phishing quarantine, vulnerability assessments, compliance reporting, and detection of MAC and IP spoofing. NetSHIELD scales from protecting 25 to over 10,000 assets and is affordable and simple to manage.

Detect HTTP Brute Force attack using Snort IDS/IPS on PFSense Firewall

Huda Seyam

FortiGate 1500D Series Delivers High-Performance Next-Generation Firewall

ShilaThak

The FortiGate 1500D series delivers high-performance next-generation firewall (NGFW) capabilities for large enterprises and service providers. With multiple high-speed interfaces, high-port density, and high-throughput, ideal deployments are at the enterprise edge, hybrid data center core, and across internal segments. The FortiGate 1500D Firewall is a compact, Network Security Appliance ideal for use as both a Next-Generation Firewall and High-Performance Data Center Firewall at the Enterprise Edge. It delivers up to 80 Gbps firewall throughput and ultra-low latency as well as 11 Gbps next-generation threat protection and control over more than 3000 discrete applications

Firewall girija ppt

Girija Sankar Dash

A firewall protects networks and computers from unauthorized access. There are two main types - software firewalls that protect individual computers, and hardware firewalls that protect entire networks. A firewall works by inspecting all incoming and outgoing data packets and determining whether to allow or block them based on a set of rules. Firewalls can block hackers, enforce security policies to protect private information, and log internet activity. However, firewalls cannot protect against insider threats, connections not routed through the firewall, or completely new viruses.

The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.

SS7 Vulnerabilities

PositiveTechnologies

The Post Covid-19 Cybersecurity World - Where Is It Headed?

Bangladesh Network Operators Group

The document discusses the state of cybersecurity following the COVID-19 pandemic. It notes that daily cyber attacks and ransomware incidents have increased, exacerbated by factors like the rise in home working. Reasons for this include the large number of new internet-connected devices, more sophisticated criminal techniques like social media exploitation, and outsourced infrastructure. The document argues cybersecurity basics need attention, like stronger authentication, access controls and logging. It also calls for improved incident response, as home networks have become an extension of business systems, requiring rethinking of security practices.

Tech 101: Understanding Firewalls

Likan Patra

In computing, a firewall is a software or hardware-based network security system that controls the incoming and outgoing network traffic by analyzing the data packets and determining whether they should be allowed through or not, based on a rule set. A firewall establishes a barrier between a trusted, secure internal network and another network (e.g., the Internet) that is not assumed to be secure and trusted.

Sophos Utm Presentation 2016

InformatikaFortuno

The document discusses Sophos UTM, a unified threat management solution. It summarizes the evolution of firewalls from packet filters to application-level filters. It also discusses how threats like malware, phishing, and SQL injection have changed over time. The document outlines the key features of Sophos UTM, including firewall protection, wireless protection, endpoint protection, network protection, web protection, and email protection. It positions Sophos UTM as providing complete security for organizations through an integrated solution.

4 Steps to Optimal Endpoint Settings

Sophos

voice

chaitu64

A firewall is a security system that prevents outside users from accessing private network resources. There are two main types of firewalls: packet-level and application-level. Packet-level firewalls allow or deny access based on IP addresses but are susceptible to IP spoofing. Application-level firewalls use additional proxy software to filter data based on content but can cause speed decreases and be susceptible to inside attacks. Successful attacks like the Sasser worm and IP spoofing demonstrate the importance of firewalls for network security.

Firewall presentation m. emin özgünsür

emin_oz

This document discusses different types of firewalls and their functions. It begins by explaining why computers need protection and why firewalls are needed. There are three main types of firewalls: packet filtering, application-level, and circuit-level. Packet filtering firewalls control protocols, IP addresses, and port numbers using rulesets. Application-level firewalls allow or block specific application traffic using mechanisms for each desired application. Circuit-level firewalls relay TCP connections by copying bytes between an external host and internal resource. In summary, firewalls provide network security by controlling access and filtering unauthorized traffic between internal and external networks.

Data Security in Local Area Network Using Distributed Firewall

Manish Kumar

This document summarizes the key components and architecture of distributed firewalls for enhancing data security in local networks. Distributed firewalls define security policies centrally and implement them across network endpoints to filter both internal and external traffic. They have a central management system to configure, deploy and monitor policies across distributed firewall components, which include a policy actuator, remote endpoint connectors, and log server. Policies are distributed from the management center and implemented locally at each host-end to control traffic according to the security rules.

XG Firewall

DeServ - Tecnologia e Servços

The document provides an overview of the Sophos XG Firewall. It discusses how the IT landscape is changing with increasing attacks and the blurring of network perimeters. It then introduces the Sophos XG Firewall as having the following key attributes: - Simple and easy to use interface - Lightning fast performance with FastPath packet optimization - Unparalleled protection with features like Security Heartbeat that links endpoints and firewalls - On-box reporting and visibility tools - Backed by Sophos as a trusted industry leader in cybersecurity

Securing with Sophos - Sophos Day Belux 2014

Sophos Benelux

Telecom Security in the Era of 5G and IoT

PositiveTechnologies

Dmitry Kurbatov is the CTO of Positive Technologies, a cybersecurity company. He began his career as a network engineer in 2007 before switching to security in 2009. In his presentation, he discusses security issues for 5G and IoT networks. He notes that the virtualized and programmable nature of 5G introduces new vulnerabilities, and that legacy threats to previous cellular standards still apply. Additionally, the massive number of connected IoT devices poses new threats like large-scale botnets. He concludes by providing guidelines for 5G security, including implementing policies separately for each network slice and securing new interfaces from the start.

160415 lan and-wan-ctap

Lan & Wan Solutions

The document describes a Cyber Threat Assessment Program that analyzes a network's security, user productivity, and network utilization through deploying a FortiGate appliance on the network for log collection. It discusses deploying the FortiGate in transparent or one-arm sniffer mode, collecting logs locally or sending to FortiAnalyzer, and generating a report analyzing security effectiveness, applications/users, and network performance improvement areas. The program aims to assess network performance and security in order to identify issues and recommend enhancements.

Watch guard solution

laonap166

This document discusses next generation firewalls (NGFWs) and unified threat management (UTM) solutions. It defines NGFWs as deep packet inspection firewalls that perform application-level inspection, intrusion prevention, and use intelligence from outside the firewall. UTMs are defined as security appliances that integrate firewall, antivirus, intrusion detection, and other features. The document notes that while some see NGFWs as having more features than UTMs, in reality both provide similar security capabilities. It emphasizes choosing a solution based on deployability, usability, visibility, performance, and efficacy over specific product classifications.

Attacks you can't combat: vulnerabilities of most robust MNOs

PositiveTechnologies

network security, group policy and firewalls

Sapna Kumari

The document discusses network security and firewalls. It defines network security as controlling unwanted intrusion and damage to computer networks. It then outlines security objectives like confidentiality, integrity, and availability. It also discusses group policy for centralized management of operating systems and user settings in Active Directory environments. Finally, it describes different types of firewalls like packet filters, application proxies, and stateful inspection firewalls that act as security barriers between network segments.

Fortinet Tanıtım

Güney Bilişim

Fortinet is a global network security company that provides network security appliances for carriers, data centers, enterprises and distributed offices. It has over 5,000 employees worldwide, over 340,000 customers, and annual revenue exceeding $1 billion. Fortinet's mission is to deliver innovative and high-performance network security solutions through its security fabric platform to secure and simplify IT infrastructure.

Evento 15 aprile

Lan & Wan Solutions

This document summarizes an event hosted by Lan & Wan Solutions and Fortinet Italy to discuss innovating businesses and network security. The agenda includes presentations on Fortinet's security solutions and a free cyber threat assessment program. It promotes Fortinet's integrated security platform and threat intelligence from FortiGuard Labs. The event also includes a network assessment report and lunch at the Zonin winery.

Physical data security & security of data over network by team netnepz- A...

SandipAryal5

VectorUSA and Fortinet: Next Generation Network Security

VectorUSA

eu-19-Yazdanmehr-Mobile-Network-Hacking-IP-Edition-2.pdf

AliAlwesabi

AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx

ronak56

Abstract Voice over Internet Protocol (VoIP) is an advanced telecommunication technology which transfers the voice/video over high speed network that provides advantages of flexibility, reliability and cost efficient advanced telecommunication features. Still the issues related to security are averting many organizations to accept VoIP cloud environment due to security threats, holes or vulnerabilities. So, the novel secured framework is absolutely necessary to prevent all kind of VoIP security issues. This paper points out the existing VoIP cloud architecture and various security attacks and issues in the existing framework. It also presents the defense mechanisms to prevent the attacks and proposes a new security framework called Intrusion Prevention System (IPS) using video watermarking and extraction technique and Liveness Voice Detection (LVD) technique with biometric features such as face and voice. IPSs updated with new LVD features protect the VoIP services not only from attacks but also from misuses. A Comprehensive Survey of Security Issues and Defense Framework for VoIP Cloud Ashutosh Satapathy* and L. M. Jenila Livingston School of Computing Science and Engineering, VIT University, Chennai - 600127, Tamil Nadu, India; [email protected], [email protected] Keywords: Defense Mechanisms, Liveness Voice Detection, VoIP Cloud, Voice over Internet Protocol, VoIP Security Issues 1. Introduction The rapid progress of VoIP over traditional services is led to a situation that is common to many innovations and new technologies such as VoIP cloud and peer to peer services like Skype, Google Hangout etc. VoIP is the technology that supports sending voice (and video) over an Internet protocol-based network1,2. This is completely different than the public circuit-switched telephone network. Circuit switching network allocates resources to each individual call and path is permanent throughout the call from start to end. Traditional telephony services are provided by the protocols/components such as SS7, T carriers, Plain Old Telephone Service (POTS), the Public Switch Telephone Network (PSTN), dial up, local loops and anything under International Telecommunication Union. IP networks are based on packet switching and each packet follows different path, has its own header and is forwarded separately by routers. VoIP network can be constructed in various ways by using both proprietary protocols and protocols based on open standards. 1.1 VoIP Layer Architecture VoIP communication system typically consist of a front end platform (soft-phone, PBX, gateway, call manager), back end platform (server, CPU, storage, memory, network) and intermediate platforms such as VoIP protocols, database, authentication server, web server, operating systems etc. It is mainly divided into five layers as shown in Figure1. 1.2 VoIP Cloud Architecture VoIP cloud is the framework for delivering telephony services in which resourc.

What's hot

Call for Papers - International Journal of Network Security & Its Application...

IJNSA Journal

SS7 Vulnerabilities

PositiveTechnologies

The Post Covid-19 Cybersecurity World - Where Is It Headed?

Bangladesh Network Operators Group

Tech 101: Understanding Firewalls

Likan Patra

Sophos Utm Presentation 2016

InformatikaFortuno

4 Steps to Optimal Endpoint Settings

Sophos

voice

chaitu64

Firewall presentation m. emin özgünsür

emin_oz

Data Security in Local Area Network Using Distributed Firewall

Manish Kumar

XG Firewall

DeServ - Tecnologia e Servços

Securing with Sophos - Sophos Day Belux 2014

Sophos Benelux

Telecom Security in the Era of 5G and IoT

PositiveTechnologies

160415 lan and-wan-ctap

Lan & Wan Solutions

Watch guard solution

laonap166

Attacks you can't combat: vulnerabilities of most robust MNOs

PositiveTechnologies

network security, group policy and firewalls

Sapna Kumari

Fortinet Tanıtım

Güney Bilişim

Evento 15 aprile

Lan & Wan Solutions

Physical data security & security of data over network by team netnepz- A...

SandipAryal5

VectorUSA and Fortinet: Next Generation Network Security

VectorUSA

What's hot (20)

Call for Papers - International Journal of Network Security & Its Application...

SS7 Vulnerabilities

The Post Covid-19 Cybersecurity World - Where Is It Headed?

Tech 101: Understanding Firewalls

Sophos Utm Presentation 2016

4 Steps to Optimal Endpoint Settings

voice

Firewall presentation m. emin özgünsür

Data Security in Local Area Network Using Distributed Firewall

XG Firewall

Securing with Sophos - Sophos Day Belux 2014

Telecom Security in the Era of 5G and IoT

160415 lan and-wan-ctap

Watch guard solution

Attacks you can't combat: vulnerabilities of most robust MNOs

network security, group policy and firewalls

Fortinet Tanıtım

Evento 15 aprile

Physical data security & security of data over network by team netnepz- A...

VectorUSA and Fortinet: Next Generation Network Security

Similar to Небезопасность сотовых сетей вчера, сегодня, завтра

eu-19-Yazdanmehr-Mobile-Network-Hacking-IP-Edition-2.pdf

AliAlwesabi

AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx

ronak56

AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx

daniahendric

AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx

makdul

StealthWatch & Point-of-Sale (POS) Malware

Lancope, Inc.

Retailers are under cyber-attack at an alarming rate. Day after day, we hear of another major national retail chain experiencing a colossal data breach. Learn key concepts and techniques that will help you rapidly enhance your current cyber security efforts. • Get a complete view what is currently happening in the retail industry • Understand the concepts of NetFlow and how it can greatly enhance security efforts • Learn how attacks are injected into the network from the POS system, and ways to detect and remediate these attacks • Establish a means to recognize data exfiltration and learn techniques to prevent it

D2T2 - Bye Bye IMSI Catchers - Security Enhancements in 5g - Lin Huang.pdf

f2po1

1) 5G networks include new security enhancements to address vulnerabilities in previous cellular networks and protect subscriber identity and data. 2) These enhancements include secondary authentication outside the home network, encryption of the subscriber permanent identity to prevent IMSI catching, and integrity protection for user data channels. 3) However, some vulnerabilities may still exist since not all networks will immediately upgrade to 5G and encryption of subscriber identities is optional rather than mandatory.

A survey in privacy security in IOT

ssk

The document discusses security issues and requirements for privacy and security in Internet of Things (IoT) architectures. It describes various viewpoints on IoT security issues such as lightweight encryption needs for sensor nodes, authentication challenges, and privacy leaks. It also outlines solutions proposed by different researchers, including identity authentication mechanisms, data encryption, intrusion detection systems, and security protocols tailored for resource-constrained IoT devices and networks.

A survey in privacy and security in Internet of Things IOT

University of Ontario Institute of Technology (UOIT)

Security in IoT

gr9293

Mobile application security and threat modeling

Shantanu Mitra

Wireless Security and Mobile DevicesChapter 12Princi.docx

adolphoyonker

Wireless Security and Mobile Devices Chapter 12 Principles of Computer Security, Fifth Edition Copyright © 2018 by McGraw-Hill Education. All rights reserved. Objectives Describe the different wireless systems in use today. Detail WAP and its security implications. Identify 802.11’s security issues and possible solutions. Learn about the different types of wireless attacks. Examine the elements needed for enterprise wireless deployment. Examine the security of mobile systems. Principles of Computer Security, Fifth Edition Copyright © 2018 by McGraw-Hill Education. All rights reserved. 2 Key Terms (1 of 4) Beacon frames Bluebugging Bluejacking Bluesnarfing Bluetooth Bluetooth DoS Captive portal Containerization Custom firmware Direct-sequence spread spectrum (DSSS) Disassociation Extensible Authentication Protocol (EAP) EAP-FAST EAP-TLS EAP-TTLS Principles of Computer Security, Fifth Edition Copyright © 2018 by McGraw-Hill Education. All rights reserved. Beacon frames – A series of frames used in WiFi (802.11) to establish the presence of a wireless network device. Bluebugging – The use of a Bluetooth-enabled device to eavesdrop on another person’s conversation using that person’s Bluetooth phone as a transmitter. The bluebug application silently causes a Bluetooth device to make a phone call to another device, causing the phone to act as a transmitter and allowing the listener to eavesdrop on the victim’s conversation in real time. Bluejacking – The sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile phones, tablets, or laptop computers. Bluesnarfing – The unauthorized access of information from a Bluetooth-enabled device through a Bluetooth connection, often between phones, desktops, laptops, and tablets. Bluetooth DOS – The use of Bluetooth technology to perform a denial-of-service attack against another device. In this attack, an attacker repeatedly requests pairing with the victim device. This type of attack does not divulge information or permit access, but is a nuisance. And, more importantly, if done repeatedly it can drain a device’s battery, or prevent other operations from occurring on the victim’s device. Captive portal – A website used to validate credentials before allowing access to a network connection. Containerization – Dividing a device into a series of containers, with one container holding work-related materials and the other personal materials. Custom firmware - Firmware for a device that has been altered from the original factory settings. Direct-sequence spread spectrum (DSSS) – A method of distributing a communication over multiple frequencies to avoid interference and detection. Disassociation – An attack against a wireless system designed to disassociate a host from the wireless access point, and from the wireless network. Disassociation attacks stem from the deauthentication frame that is in the IEEE 802.11 (Wi-Fi) standard. Extensible Authentication Protocol.

Network security

mustafa aadel

This document discusses network security and related concepts. It begins by defining network security as activities designed to protect network safety and data by managing access through hardware and software technologies. It then explains that network security works by combining multiple defense layers at the edge and in the network to execute policies and controls while authorizing users and blocking threats. Finally, it outlines how network security benefits users by protecting proprietary information, providing authentication and access control for resources, and guaranteeing availability.

Positive Hack Days. Gurzov. VOIP - Reduce Your Expenses, Increase Your Income...

Небезопасность сотовых сетей вчера, сегодня, завтра

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Небезопасность сотовых сетей вчера, сегодня, завтра

Similar to Небезопасность сотовых сетей вчера, сегодня, завтра (20)

More from Positive Hack Days

More from Positive Hack Days (20)

Recently uploaded

Recently uploaded (20)

Небезопасность сотовых сетей вчера, сегодня, завтра

Editor's Notes