News / Science & Technology

UN Warns on Mobile Cybersecurity Bugs to Prevent Attacks

A woman holds up a SIM card, which she won in a June lottery, in Rangoon, Burma, June 24, 2013. A woman holds up a SIM card, which she won in a June lottery, in Rangoon, Burma, June 24, 2013.
A woman holds up a SIM card, which she won in a June lottery, in Rangoon, Burma, June 24, 2013.
A woman holds up a SIM card, which she won in a June lottery, in Rangoon, Burma, June 24, 2013.
A United Nations group that advises nations on cybersecurity plans to send out an alert about significant vulnerabilities in mobile phone technology that could potentially enable hackers to remotely attack at least half a billion phones.

The bug, discovered by German firm, allows hackers to remotely gain control of and also clone certain mobile SIM cards.

Hackers could use compromised SIMs to commit financial crimes or engage in electronic espionage, according to Berlin's Security Research Labs, which will describe the vulnerabilities at the Black Hat hacking conference that opens in Las Vegas on July 31.

The U.N.'s Geneva-based International Telecommunications Union, which has reviewed the research, described it as "hugely significant."

"These findings show us where we could be heading in terms of cybersecurity risks," ITU Secretary General Hamadoun Touré told Reuters.

He said the agency would notify telecommunications regulators and other government agencies in nearly 200 countries about the potential threat and also reach out to hundreds of mobile companies, academics and other industry experts.

A spokeswoman for the GSMA, which represents nearly 800 mobile operators worldwide, said it also reviewed the research.

"We have been able to consider the implications and provide guidance to those network operators and SIM vendors that may be impacted," said GSMA spokeswoman Claire Cranton.

Nicole Smith, a spokeswoman for Gemalto NV, the world's biggest maker of SIM cards, said her company supported GSMA's response.

"Our policy is to refrain from commenting on details relating to our customers' operations," she said.

Becoming the SIM

Cracking SIM cards has long been the Holy Grail of hackers because the tiny devices are located in phones and allow operators to identify and authenticate subscribers as they use networks.

Karsten Nohl, the chief scientist who led the research team and will reveal the details at Black Hat, said the hacking only works on SIMs that use an old encryption technology known as DES. The technology is still used on at least one out of eight SIMs, or a minimum of 500 million phones, according to Nohl.

The ITU estimates some 6 billion mobile phones are in use worldwide. It plans to work with the industry to identify how to protect vulnerable devices from attack, Touré said.

Once a hacker copies a SIM, it can be used to make calls and send text messages impersonating the owner of the phone, said Nohl, who has a doctorate in computer engineering from the University of Virginia.

"We become the SIM card. We can do anything the normal phone users can do," Nohl said in a phone interview. "If you have a MasterCard number or PayPal data on the phone, we get that too."

IPhone, Android, BlackBerry

The mobile industry has spent several decades defining common identification and security standards for SIMs to protect data for mobile payment systems and credit card numbers. SIMs are also capable of running apps.

Nohl said Security Research Labs found mobile operators in many countries whose phones were vulnerable, but declined to identify them. He said mobile phone users in Africa could be among the most vulnerable because banking is widely done via mobile payment systems with credentials stored on SIMs.

All types of phones are vulnerable, including iPhones from Apple Inc, phones that run Google Inc's Android software and BlackBerry Ltd smartphones, he said.

BlackBerry's director of security response and threat analysis, Adrian Stone, said in a statement that his company proposed new SIM card standards last year to protect against the types of attacks described by Nohl, which the GSMA has adopted and advised members to implement.

Apple and Google declined comment.

CTIA, a U.S. mobile industry trade group based in Washington, D.C., said the new research likely posed no immediate threat.

"We understand the vulnerability and are working on it," said CTIA Vice President John Marinho. "This is not what hackers are focused on. This does not seem to be something they are exploiting."

You May Like

Afghanistan, Pakistan Leaders to Hold Icebreaking Talks in Paris

Two sides are expected to discuss ways to ease bilateral tensions and jointly work for resumption of stalled peace talks between Afghan government and Taliban officials

Corruption Busting Is Her Game

South African activist is building 'international online community of thousands of corruption fighters'

Former SAF Businessman Gives Books, Love of Reading to Students

Steve Tsakaris now involved in nonprofit Read to Rise, which distributes books in Soweto, encourages lower-grade primary school students to read

Featured Videos

Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
Belgium-Germany Border Remains Porous, Even As Manhunt For Paris Attacker Continuesi
Ayesha Tanzeem
November 25, 2015 10:46 PM
One of the suspected gunmen in the Nov. 13 Paris attacks, Salah Abdeslam, evaded law enforcement, made his way to Belgium, and is now believed to have fled to Germany. VOA correspondent Ayesha Tanzeem makes the journey across the border from Belgium into Germany to see how porous the borders really are.

Video Belgium-Germany Border Remains Porous, Even As Manhunt For Paris Attacker Continues

One of the suspected gunmen in the Nov. 13 Paris attacks, Salah Abdeslam, evaded law enforcement, made his way to Belgium, and is now believed to have fled to Germany. VOA correspondent Ayesha Tanzeem makes the journey across the border from Belgium into Germany to see how porous the borders really are.

Video Islamic State Unfazed by Losses in Iraq, Syria

Progress in the U.S.-led effort to beat Islamic State on its home turf in Iraq and Syria has led some to speculate the terror group may be growing desperate. But counterterror officials say that is not the case, and warn the recent spate of terror attacks is merely part of the group’s evolution. VOA National Security correspondent Jeff Seldin has more.

Video Taiwan Looks for Role in South China Sea Dispute

The Taiwanese government is one of several that claims territory in the hotly contested South China Sea, but Taipei has long been sidelined in the dispute, overshadowed by China. Now, as the Philippines challenges Beijing’s claims in an international court at The Hague, Taipei is looking to publicly assert its claims. VOA’s Bill Ide has more from Beijing.

Video Syrian Refugees in US Express Concern for Those Left Behind

Syrian immigrants in the United States are concerned about the negative tide of public opinion and the politicians who want to block a U.S. plan to accept 10,000 Syrian refugees. Zlatica Hoke reports many Americans are fighting to dispel suspicions linking refugees to terrorists.

Video After Paris Attacks, France Steps Up Fight Against IS

The November 13 Paris attacks have drawn increased attention to Syria, where many of the suspected perpetrators are said to have received training. French President Francois Hollande is working to build a broad international coalition to defeat Islamic State in Syria and in Iraq. Zlatica Hoke reports.

Video US, Cambodian Navies Pair Up in Gulf of Thailand

The U.S. Navy has deployed one of its newest and most advanced ships to Cambodia to conduct joint training drills in the Gulf of Thailand. Riding hull-to-hull with Cambodian ships, the seamen of the USS Fort Worth are executing joint-training drills that will help build relations in Southeast Asia. David Boyle reports for VOA from Preah Sihanouk province.

Video Americans Sharpen Focus on Terrorism

Washington will be quieter than usual this week due to the Thanksgiving holiday, even as Americans across the nation register heightened concerns over possible terrorist threats. VOA’s Michael Bowman reports new polling data from ABC News and the Washington Post newspaper show an electorate increasingly focused on security issues after the deadly Islamic State attacks in Paris.

Video World Leaders Head to Paris for Climate Deal

Heads of state from nearly 80 countries are heading to Paris (November 30-December 11) to craft a global climate change agreement. The new accord will replace the Kyoto Protocol on Climate Change that expired in 2012.

Video Uncertain Future for Syrian Refugee Resettlement in Illinois

For the trickle of Syrian refugees finding new homes in the Midwest city of Chicago, the call to end resettlement in many U.S. states is adding another dimension to their long journey fleeing war. Organizations working to help them integrate say the backlash since the Paris attacks is both harming and helping their efforts to provide refugees sanctuary. VOA's Kane Farabaugh reports.

Video Creating Physical Virtual Reality With Tiny Drones

As many computer gamers know, virtual reality is a three-dimensional picture, projected inside special googles. It can fool your brain into thinking the computer world is the real world. But If you try to touch it, it’s not there. Now Canadian researchers say it may be possible to create a physical virtual reality using tiny drones. VOA’s George Putic reports.

Video New American Indian Village Takes Visitors Back in Time

There is precious little opportunity to experience what life was like in the United States before its colonization by European settlers. Now, an American Indian village built in a park outside Washington is taking visitors back in time to experience the way of life of America's indigenous people. Carol Pearson narrates this report from VOA's June Soh.

Video Even With Hometown Liberated, Yazidi Refugees Fear Return

While the northern Iraqi town of Sinjar has been liberated from Islamic State forces, it's not clear whether Yazidi residents who fled the militants will now return home. VOA’s Mahmut Bozarslan talked with Yazidis, a religious and ethnic minority, at a Turkish refugee camp in Diyarbakır. Robert Raffaele narrates his report.

Video Nairobi Tailors Make Pope Francis’ Vestments

To ensure the pope is properly attired during his visit, the Kenya Conference of Catholic Bishops asked the Dolly Craft Sewing Project in the Nairobi slum of Kangemi to make the pope's vestments, the garments he will wear during the various ceremonies. Jill Craig reports.

Video Cross-Border Terrorism Puts Europe’s Passport-Free Travel in Doubt

The fallout from the Islamic State terror attacks in Paris has put the future of Europe’s passport-free travel area, known as the "Schengen Zone," in doubt. Several of the perpetrators were known to intelligence agencies, but were not intercepted. Henry Ridgwell reports from London European ministers are to hold an emergency meeting Friday in Brussels to look at ways of improving security.

Video El Niño Brings Unexpected Fish From Mexico to California

Fish in an unexpected spectrum of sizes, shapes and colors are moving north, through El Niño's warm currents from Mexican waters to the Pacific Ocean off California’s coast. El Nino is the periodic warming of the eastern and central Pacific Ocean. As Faiza Elmasry tells us, this phenomenon thrills scientists and gives anglers the chance of a once-in-a-lifetime big catch. Faith Lapidus narrates.

Video Terrorism in Many Forms Continues to Plague Africa

While the world's attention is on Paris in the wake of Friday night's deadly attacks, terrorism from various sides remains a looming threat in many African countries. Nigerian cities have been targeted this week by attacks many believe were staged by the violent Islamist group Boko Haram. In addition, residents in many regions are forced to flee their homes as they are terrorized by armed militias. Zlatica Hoke reports.

Video Study: Underage Marriage Rate Higher for Females in Pakistan

While attitudes about the societal role of females in Pakistan are evolving, research by child advocacy group Plan International suggests that underage marriage of girls remains a particularly big issue in the country. VOA’s Ayesha Tanzeem reports how such marriages leads to further social problems.

VOA Blogs