Spread the love! TechSpot Tech Gift Shortlist 2017

SIM card flaw could put nearly half a billion phones at risk

By Shawn Knight · 8 replies
Jul 21, 2013
Post New Reply
  1. Smartphones have been the target of countless hacking attempts although there has always been one part of the phone that remained foolproof – the SIM card. That unfortunately is no longer the case as a German cryptographer by the name...

    Read more
  2. veLa

    veLa TS Evangelist Posts: 773   +221

    Very interesting development here. Mobile phone security is really lacking at the moment.
  3. Jad Chaar

    Jad Chaar Elite Techno Geek Posts: 6,515   +974

    Yeah, very interesting.
  4. Well if thi happens with a SIM CARD....what should we expect about the chip on a Credit Card?.....
  5. The risk analysis is total bullshit. Does anyone have access to all the SIMs in the field? NO, only MNOs has that. A vulnerability in a SIM is only effective in cracking one SIM physically at a time. For it to be risky, you need to be the network operator to run massively a campaign to crack the card. However, as the operator, they should already have the secret codes of these SIM. So, what is there to hack for the operator?

    In the nutshell, we should only panick if telco operator networks are hacked. Then, something really serious can happen. Hacking one SIM at a time is laughable especially with the high chunk rate. Readers that got so scared, think again.

    The credit cards have their own standardizations as well. Enforced by the banks and master / visa as well. So, naive to think a telecom vulnerability can somehow equate to credit cards as well.
  6. Skidmarksdeluxe

    Skidmarksdeluxe TS Evangelist Posts: 8,647   +3,270

    There's flaws in everything, that's why we're human. I'm not gonna loose any sleep over this.
    misor likes this.
  7. Darth Shiv

    Darth Shiv TS Evangelist Posts: 1,798   +459

    Contact and contactless chips are an entirely different kettle of fish. The original mifare cards had retarded security. Non-existent. Newer ones are better but not sure if they have solved the obvious issues.
  8. gamoniac

    gamoniac TS Guru Posts: 305   +71

    Yet it took him and his team three years (after 1000 SIM cards) to find it, and only 1 in 4 can be hacked by this flaw? That is pretty good in my book. Now Mr. Nohl, please do us all a big favor and keep this flaw to yourself because no hacker will spend 3-5 years looking for this flaw. They have easier targets to exploit and that is enough headache for all of us.
  9. Absolutely nothing at all, because they have little in common.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...