![]() ![]() Which smartphones are vulnerable to these kinds of attacks? That varies widely depending on the security settings and practices in place for use of the device. ![]() And these kinds of hacks are unique to smartphones because PCs don't have SMS capabilities, he said. The attacks, according to Machlin, prove that texts can no longer be considered safe. The wipe, said Machlin, could also be pushed to all devices contained in a hacked phone's contact list. As a finale, he pushed a wipe command, which removed all stored information from the device. He showed us how he could easily uncheck SSL, leaving the device vulnerable with no encryption. In this kind of hack, a criminal can change the control settings of a device without the user having any knowledge. In the second demonstration, Machlin ran through a control message attack. He said it was also possible in this scenario to push viruses to the device or even initiate a denial of service attack. However, Machlin noted the application could have just as easily have stolen a contact list, either personal or corporate. The SMS came back to Machlin's phone with the attack phone's INSI number the phone's unique ID. In the second push, Machlin ran an application on the attacked phone that could retrieve data. First, Machlin sent a graphic to the target phone that said "You have been hacked" to show just how quick and easy it is to get into another user's phone with SMS. Machlin sent a simple SMS which invoked Internet Explorer on the attack device. ![]() The first attack we watched is known as a 'Midnight Raid,' because it is often pulled off during the night when the phone's user is asleep and the device is still turned on as it is charged, or simply left on the nightstand. ![]() A third phone served as our target device, the phone that was 'under attack' in the demonstration. One phone acts as a GSM modem for the laptop, the other phone is Machlin's personal phone, which he used to receive information. Machlin's 'hacker tool kit' included a laptop with WiFi connectivity, and two phones. Machlin walked us through two hacks using basic tools available to anyone. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |