A researcher from Chinese security firm Qihoo 360 has revealed details on a vulnerability in 4G LTE networks that, if exploited, could allow hackers to use fake, malicious base stations to perform man-in-the-middle attacks.
According to The Register, researcher Wanqiao Zhang presented her findings on the vulnerabilities last weekend at the Ruxcon Security Conference in Australia. To exploit the flaws, an attacker could use an IMSI (international mobile subscriber identity) catcher and femtocell (low-power cellular base station) to reroute calls over the air to the fake base station, which is controlled by the adversary.
Leave a reply
