SS7(signaling system No7) attack
You can read text listen to phone calls and track mobile phone users’ locations with just the knowledge of their phone number using a vulnerability in the worldwide mobile phone network infrastructure.
SS7, which is called Common Channel Signalling System 7 (CCSS7) in the US or Common Channel Interoffice Signaling 7 (CCIS7) in the UK, is a system that connects one mobile phone network to another.
It was first developed in 1975 and has many variants. Most networks use protocols defined by the American National Standards Institute and the European Telecommunications Standards Institute.
SS7 is a set of protocols allowing phone networks to exchange the information needed for passing calls and tex between each other and to ensure correct billing.
It also allows users on one network to roam on another.
👉Once you have access to the SS7 system, you can essentially have access to the same amount of information and snooping capabilities as security services.
👉you can transparently forward calls, giving you the ability to record or listen in to them.
👉you can also read SMS messages sent between phones, andtrack the location of a phone using the same system that the phone networks use to help keep a constant service available and deliver phone calls, texts and data.
So what does one require to make this work?
The list is quite short:
👉Computer 👉Linux OS 👉SDK for SS7 Apart from the computer itself, remaining ingredients are free and publicly available on the Internet.
Thanks to a vulnerability in SS7 you can now tape in, the method is called SS7 poisoning and it’s not really hard if you have basic understanding of how to exploit things, but since you are reading this I would assume you are at least a hacker within, if you don’t understand what I am going to explain or can’t do it, don’t give up.
0 Comments:
Post a Comment