A few days ago, Nanjing Jiangning Police officer Micro Popular Science a new type of false base station fraud means--gsm hijacking + SMS sniffer technology, aroused the attention of netizens. It is understood that GSM hijacking + SMS sniffer technology in the past two years has emerged in the new pseudo-base station crime means, the use of the method is to use the GSM 2G network design defects, to achieve the target mobile phone, and access to the target phone to receive the verification message.
And then use the major banks, Web sites, mobile payment app existing technical loopholes and defects, to achieve information theft, money theft brush and network fraud and other crimes. According to the Guangzhou Daily News, swindlers through special equipment to automatically search the nearby mobile phone number, interception, such as operators, the bank sent text messages, hijacked objects mainly for 2G signal (GSM), stealing message information by logging on to some sites, from the collision machine Master identity information, called ' collision ' (that is, the collision between multiple databases),
Try to match the identity of the main machine, including ID card, bank card number, cell phone number, verification code and other information, and then in some small and convenient payment platform to open the account and bind the victim bank card, posing as the victim of consumption or cash, steal the victim's bank card funds.
It is reported that most of the gang chose the early morning crime, without direct contact with the victim, so most of the victims can not timely detect the theft of funds.
This kind of attack mainly uses the short message authentication code in the user authentication aspect existence security flaw, this flaw is caused by the GSM design, and the GSM network coverage scope is wide, therefore the repair difficulty is big, the cost is high, for the ordinary user basically is unable to guard against. However, Jiangning police also pointed out that we do not have to worry too much, the issue of GSM protocol has already been concerned about, the current system upgrade is also in progress.
and authentication code text message is mainly because of itself in clear text delivery to lead to leakage of high-risk.
More importantly, the vast majority of the current payment class, the Bank app in addition to the SMS verification code often has picture verification, voice verification, face verification, fingerprint verification, and so many two verification mechanisms, if the only leakage of authentication code, the problem is not big. The vast majority of the users of the recruitment is because the same time to disclose the identity card number and other important identity information. So the overall crime rate is not high.
GSM hijacking can not prevent, other information leakage is also a defense. At the same time, the major operators and communications management departments to take effective technical means to solve this problem as soon as possible.
Some banks and financial apps with imperfect security mechanisms may consider using other two-way validation aids to improve security efficiency. Jiangning police also said that some of the media's strategy is to shut down at night or to open flight mode, but in fact this does not mean much, because some mobile phones may be hijacked after itself can not receive text messages. The more obvious features of the attack include the possibility of mobile phone signals switching between 4g and 2g, in addition to receiving text messages. And once you shut down or start flying at night, it can also cause other scams to rise or you won't be able to contact your friends when important events occur.