Attacks on telecom operators and mobile subscribers using SS7: from DoS to call interception

No ratings

Presented at Syscan 2015 by

Dmitry Kurbatov

Lately, phone communication records can be found in the Internet and even be heard on TV. It is obvious that such records were obtained without the knowledge of the subscribers. We will consider the range of possibilities of an intruder who accessed the holy of holies of telecom companies — SS7. The talk will address attacks aimed at: disclosure of subscriber’s sensitive data including his or her location, changing enabled services, call forwarding, unauthorized intrusion into a voice communication channel. Information about signaling messages, which can help to perform these attacks, is open for public access. The research also covers types of proactive protection against such attacks and methods of investigating incidents related to vulnerabilities in a signaling network.