AdaptiveMobile Security Simjacker Technical Paper 01


millions of SIM Cards globally are affected



Download 3.33 Mb.
View original pdf
Page21/29
Date20.12.2023
Size3.33 Mb.
#62999
1   ...   17   18   19   20   21   22   23   24   ...   29
SimJacker
SIM-Swapping
millions of SIM Cards globally are affected. This matches the GSM Association’s assessment that a minority of the 9 billion SIM Cards globally are affected.
Figure 13: Range of Number of Vulnerable SIM Cards
Again, this measurement of vulnerability excludes the protections that Mobile Operators may put in place over the network side. Effective defences in the mobile network would massively reduce the risk of using this technology, this is further covered in section 8.
7.2
Additional Functionality Potential
As well as the attacks observed, there area variety of different other attacks possible using the ST Browser. The complete SIM Toolkit API Command Set accessible from the ST Browser is as follows
• REFRESH
• MORE TIME
• POLL INTERVAL
• POLLING OFF
SETUP EVENT LIST
• SETUP CALL
• SEND SS
• SEND USSD
• SEND SMS
SEND DTMF
• LAUNCH BROWSER
• PLAY TONE
• DISPLAY TEXT
• GET INKEY
GET INPUT
• SELECT ITEM
• SETUP MENU
• PROVIDE LOCAL INFO
• TIMER MANAGEMENT
SETUP IDLE MODE TEXT


31
Simjacker Technical Report
©2019 AdaptiveMobile Security Some of these require information to be displayed to the user, whereas others do not. But as per the ST and USIM standards, and by using these commands, a variety of other attacks seem possible. While not exhaustive, a number of proposed scenarios using these commands are covered briefly below
• Fraud Applications
• Advanced Location Tracking
• Assistance in Malware Deployment
Denial of Service
• Information Retrieval
• Misinformation Note In our initial blog, we showed a larger list of Proactive STK Commands, which we believed were accessible from the ST Browser. This was due partially to observing the attackers using these additional proactive commands. From subsequent followup testing and standards review, we do not believe that these commands are possible in (normal versions) of the ST Browser, and the blog was subsequently changed.
7.2.1

Download 3.33 Mb.

Share with your friends:
1   ...   17   18   19   20   21   22   23   24   ...   29




The database is protected by copyright ©ininet.org 2024
send message

    Main page