[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] DEF CON 19 - hackers get hacked!



*"A German technology researcher on Wednesday showed global mobile makers
and technology firms how General Packet Radio
Service<http://en.wikipedia.org/wiki/General_Packet_Radio_Service>can
easily be tapped, intercepted, and decrypted with an average mobile
phone and a few applications. According to the New York Times, Karsten Nohl,
a computer engineer and mobile security researcher, demonstrated to fellow
researchers gathered to attend Chaos Communication
Camp<http://events.ccc.de/2010/08/10/chaos-communication-camp-2011/>,
a Berlin-based hackers event, how to intercept the voice or data messages
sent between mobile
devices<https://www.nytimes.com/2011/08/10/technology/hacker-to-demonstrate-weak-mobile-internet-security.html>over
GPRS easily, owing to weak protection provided by mobile network
carriers for data information. Nohl, in collaboration with his colleague
Luca Melette, tapped the information within a radius of five
kilometers<http://www.itproportal.com/2011/08/11/gprs-can-be-hacked-easily-claims-german-researcher/#ixzz1UkPeNdiE>using
a seven-year-old inexpensive mobile phone from Motorola."

http://mobile.slashdot.org/story/11/08/11/1928215/GPRS-Can-Be-Hacked-Easily-Claims-German-Researcher

*
http://www.nytimes.com/2011/08/10/technology/hacker-to-demonstrate-weak-mobile-internet-security.html?_r=1

On Fri, Aug 12, 2011 at 12:44 AM, Basan <basan@xxxxxx> wrote:

> > ----- Original Message -----
> > From: -= Glowing Sex =-
> > Sent: 08/10/11 10:56 AM
> > To: coderman
> > Subject: Re: [Full-disclosure] DEF CON 19 - hackers get hacked!
> > times are a changing... but, i see now what tyou mean... still, i just
> dont
> > know why people even INSTALL or, accept anything at a defcon meeting, ofc
> > someone will try to make some name, mining for data, is stealing an id
> > nowdays, so there would be GREat potential for one device, to connect to
> > some network, and rescan for other weak/known exploits... then you have
> an
> > army :)
>
> To my knowledge, I was watching people's devices getting popped with little
> to no interaction by their part. If memory serves me correctly maybe someone
> did an apt-get update on their machine, but outside of that just the usual
> browsing and remote work.
>
> > but, intersting about 4G... i have not yet to see that haxd so, 1 point
> for
> > that but, thats prolly coz ui aint really been looking at that side of it
>
> It was impressive. Essentially if you had a device on and near the Rio
> during (and for some time after) DEF CON, you had a high chance of being
> compromised.
>
> --
> Basan - Your friendly fire-breathing chicken monster
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/