Researchers Find New 4G Vulnerabilities: Can Stolen User Information and Give False Warnings

According to foreign media reports, researchers from Purdue University and the University of Iowa have investigated and investigated a large number of new vulnerabilities in the 4G LTE network. They can peek into user information, eavesdrop on their phones, take devices offline and even send out false ones. Emergency Alerts. The researchers described 10 attacks in detail in the response report.

These vulnerabilities can be used to authenticate relaying attacks by simulating the identity of existing users. While verifying relay attacks is not a new attack, recent research has shown that they can be used to intercept information and track the user's location. And stop the phone from connecting to the internet.

During the research process, the researchers used a test framework called LTEInspector, which helps detect LTE radio and network loopholes.

Research team member Syed Rafiul Hussain pointed out that among the 10 newly discovered attacks, they have identified eight of them with SIMs from four major U.S. carriers. 'Most of these attacks were rooted in the lack of suitable identities. Authentication, encryption and important protocol information playback protection.

Hussain said that these vulnerabilities could be used to falsify the location of the victim's device. This would give criminals some information that would impede the progress of investigations by law enforcement officers by implanting false location information.

There is also the possibility of sending false emergency warnings to equipment in specific areas and triggering 'artificial disorder'. The ballistic missile warning that occurred in Hawaii in January of this year caused a lot of commotion on the ground, but it was not due to cyber attacks. Caused, but the impact of the two is the same.

Hussain pointed out that they found that a U.S. carrier has never encrypted the aircraft information and that it is very likely to be used by cybercriminals to steal cell phone information and other sensitive data. However, Hussain did not disclose the name of the company. , but that the other party has been repaired.

The researchers also said that anyone can use common software radios and open source 4G LTE protocol software to initiate these attacks. The cost can be as low as $ 1300 to $ 3,900. But before the bug is fixed, they will not announce any Proof of concept code.

Although each merchant promises that the upcoming 5G network will become faster and more secure, it is clear that 4G LTE will not disappear in the short term, so these loopholes should not be overlooked.