×4g-lte-antenna.png A group of academics from South Korea have identified 36 new vulnerabilities in the Long-Term Evolution (LTE) standard used by thousands of mobile networks and hundreds of millions of users across the world. Security ‘100 unique exploits and counting’ for latest WinRAR security bug Cybersecurity: Don’t let the small stuff cause you big problems Why security is the top barrier in enterprise cloud adoption [Hybrid Cloud TV] Red Team to help secure open-source software The vulnerabilities allow attackers to disrupt mobile base stations, block incoming calls to a device, disconnect users from a mobile network, send spoofed SMS messages, and eavesdrop and manipulate user data traffic. They were discovered by a four-person research team from the Korea Advanced Institute of Science and Technology Constitution (KAIST), and documented in a research paper they intend to present at the IEEE Symposium on Security and Privacy in late May 2019. Vulnerabilities found using fuzzing The research team’s discoveries aren’t exactly new. Several academic groups have identified similar vulnerabilities in LTE over the past years on numerous occasions –July 2018, June 2018, March 2018, June 2017, July 2016, October 2015 (paper authored by another KAIST team). These vulnerabilities have been the driving force behind efforts to create the new and improved 5G standard –which, unfortunately, isn’t that secure either, with some researchers already poking holes in it as well. But what stands out from previous work is the sheer number of vulnerabilities the KAIST team discovered, and the way they did it. The… [Read full story]
ZDNet is a business technology news website published by CBS Interactive, along with TechRepublic. The brand was founded on April 1, 1991, as a general interest technology portal from Ziff Davis and evolved into an enterprise IT-focused online publication owned by CNET Networks.