All the latest UK technology news, reviews and analysis

Black Hat: Researchers hack femtocells to grab voice, data and SMS traffic

31 Jul 2013
Black Hat 2013

LAS VEGAS: Researchers are calling on mobile operators worldwide to drop support for femtocell units following a harrowing proof-of-concept demonstration.

Security firm iSEC Partners drew a packed house at the Black Hat conference when it demonstrated a simple system which compromised a Verizon femtocell unit and then used the system to gather nearby mobile traffic.

The real-time demo included the capture of voice calls, a display of SMS messages sent by volunteers in the audience and even a video demonstrating an attack in which web data traffic could be pulled to harvest user credentials.

The stakes were only raised further as the demonstration progressed, with researchers using the hacked femtocell to collect unique device identifiers for mobile handsets. The collected data was then used to 'clone' a test handset, potentially allowing an attacker to eavesdrop on coversations and place calls from the account of the cloned system.

While US carrier Verizon has since patched the vulnerability in question and was said by the researchers to be very co-operative, iSEC researcher Doug DePerry warned that the exploit method used in the attack could be modified in the future or other modes of entry could be found to take over other femtocell units.

Rather, iSEC believes that in order to prevent these sort of attacks, network operators need to drop support for femtocells altogether and implement their security protections at the network level rather than rely on the relatively weak security of embedded devices.

“Your phone will associate to a femtocell without your knowledge,” explained DePerry. “This is not like WiFi, you do not have a choice.”

The researcer noted that certain Android devices provide users with an icon to notify them when their handset is connected to a femtocell network, though other popular models such as the iPhone do not.

For users who are looking for protection against possible femtocell attacks, the company said it is developing a free application that will force a handset to go into Airplane Mode when a femtocell detection is found. The researchers noted that the app is largly precautionary and not intended for novice users.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols

Shaun Nichols is the US correspondent for He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus

Work location poll - office, remote or home?

Where do you spend most time working on your primary work device?

Popular Threads

Powered by Disqus
LG G Flex 2 hands-on review

CES 2015: LG G Flex 2 video

A closer look at LG's latest curved-screen smartphone

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Beacon technology: what are the opportunities and how does the technology work?

This paper seeks to provide education and technical insight to beacons, in addition to providing insight to Apple's iBeacon specification


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

.Net Developer - ASP.Net / C# / VB.Net / SQL Server / HTML

.Net Developer - ASP.Net / C# / VB.Net / SQL Server...

Junior PHP Developer - PHP / MySQL / HTML / CSS

Junior PHP Developer - PHP / MySQL / HTML / CSS Leading...

Senior .Net Developer - ASP.Net / C# / SQL Server / HTML / CSS

Senior .Net Developer - ASP.Net / C# / SQL Server / HTML...

Junior Software Developer - Web / C# / ASP.Net / HTML / CSS

Junior Software Developer - Web / C# / ASP.Net / HTML...
To send to more than one email address, simply separate each address with a comma.