Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: DEF CON 19 - hackers get hacked!
From: "Ivan ." <ivanhec () gmail com>
Date: Fri, 12 Aug 2011 12:51:42 +1000

*"A German technology researcher on Wednesday showed global mobile makers
and technology firms how General Packet Radio
Service<http://en.wikipedia.org/wiki/General_Packet_Radio_Service>can
easily be tapped, intercepted, and decrypted with an average mobile
phone and a few applications. According to the New York Times, Karsten Nohl,
a computer engineer and mobile security researcher, demonstrated to fellow
researchers gathered to attend Chaos Communication
Camp<http://events.ccc.de/2010/08/10/chaos-communication-camp-2011/>,
a Berlin-based hackers event, how to intercept the voice or data messages
sent between mobile
devices<https://www.nytimes.com/2011/08/10/technology/hacker-to-demonstrate-weak-mobile-internet-security.html>over
GPRS easily, owing to weak protection provided by mobile network
carriers for data information. Nohl, in collaboration with his colleague
Luca Melette, tapped the information within a radius of five
kilometers<http://www.itproportal.com/2011/08/11/gprs-can-be-hacked-easily-claims-german-researcher/#ixzz1UkPeNdiE>using
a seven-year-old inexpensive mobile phone from Motorola."

http://mobile.slashdot.org/story/11/08/11/1928215/GPRS-Can-Be-Hacked-Easily-Claims-German-Researcher

*
http://www.nytimes.com/2011/08/10/technology/hacker-to-demonstrate-weak-mobile-internet-security.html?_r=1

On Fri, Aug 12, 2011 at 12:44 AM, Basan <basan () gmx us> wrote:

----- Original Message -----
From: -= Glowing Sex =-
Sent: 08/10/11 10:56 AM
To: coderman
Subject: Re: [Full-disclosure] DEF CON 19 - hackers get hacked!
times are a changing... but, i see now what tyou mean... still, i just
dont
know why people even INSTALL or, accept anything at a defcon meeting, ofc
someone will try to make some name, mining for data, is stealing an id
nowdays, so there would be GREat potential for one device, to connect to
some network, and rescan for other weak/known exploits... then you have
an
army :)

To my knowledge, I was watching people's devices getting popped with little
to no interaction by their part. If memory serves me correctly maybe someone
did an apt-get update on their machine, but outside of that just the usual
browsing and remote work.

but, intersting about 4G... i have not yet to see that haxd so, 1 point
for
that but, thats prolly coz ui aint really been looking at that side of it

It was impressive. Essentially if you had a device on and near the Rio
during (and for some time after) DEF CON, you had a high chance of being
compromised.

--
Basan - Your friendly fire-breathing chicken monster

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]