After SS7 its LTE

Presented at DerbyCon 3.0 All in the Family (2013), Sept. 29, 2013, 9 a.m. (50 minutes)

Gsm was cracked last decade. Now the Telecom came up with new NGN, LTE with better capacity and capability. But at the same time it comes up with critical vulnerabilities too. It could be exploited and cause serious risks to voice as well as data privacy. The all IP-Based network has brought internet risk into it giving chance to attacks like DDOS, MITM, SIP Session Hijacking, Botnets to be used by the intruders. The new protocols like SCTP, SCCP uses point codes and GT to communicate between infrastructure elements like MME, IMS, STP, HSS that could be exploited to find out entry point into the Telecom so far called closed networks. Difference between SS7 attack vectors and SIGTRAN attack vectors along with along with the application layer attacks will be discussed here.

Presenters:

• Ankit Gupta
  Ankit Gupta is a system engineer in TCS and is known for his research in Mobile Security and Penetration Testing of Telecom Networks. Currently his field interests and research is focused on Network Gateway Exploitation. He is a developer of several Android and Windows applications, looks into its security aspects as well as writing exploits in python, php, bash and C. He is a Certified Ethical Hacker and has conducted workshops in India and was the creator of android botnet “Chaos” & speaker at “DEFCON” Kerala 2013 & “Black Hat USA” 2013.

Similar Presentations:

• DerbyCon 9.0 Finish Line (2019) / SS7 for INFOSEC
• Black Hat USA 2013 / LTE BOOMS WITH VULNERABILITIES
• Black Hat USA 2017 / SS7 Attacker Heaven Turns into Riot: How to Make Nation-State and Intelligence Attackers' Lives Much Harder on Mobile Networks