Mobile Security Lab

Thanks to the DeepSec team, the presentation of mseclab team “Hijacking Mobile Data Connections 2.0: Automated and Improved”, held in November 2009 in Vienna, has been published at vimeo website.

This presentation explains some techniques, effective still today, to hijack device originated Mobile Data Connections, on any phone equipped with OMA client. Furthermore, automated technique is shown to retrieve victim’s IMSI in order to select the right APN Mobile Operator Configuration; how to perform an SSLSTRIP attack has also been demonstrated.

This entry was posted on Wednesday, June 15th, 2011 at 4:57 pm and is filed under Generic, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.