ReVoLTE attack can decrypt 4G (LTE) calls to eavesdrop on conversations

silversurfer

silversurfer

Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,111
Content source
https://www.zdnet.com/article/re-vol-te-attack-can-decrypt-4g-lte-calls-to-eavesdrop-on-conversations/
Academics detail a new attack on 4G encrypted calls. Attack works only when the attacker is on the same base station (mobile tower) as the victim.

A team of academics has detailed this week a vulnerability in the Voice over LTE (VoLTE) protocol that can be used to break the encryption on 4G voice calls.

Named ReVoLTE, researchers say this attack is possible because mobile operators often use the same encryption key to secure multiple 4G voice calls that take place via the same base station (mobile cell tower).

Academics say they tested the attack in a real-world scenario and found that multiple mobile operators are impacted, and have worked with the GSM Association (GSMA), the organization that governs telephony standards, to have the issue resolved.
Click to expand...
A scientific paper detailing the ReVoLTE attack is also available for download as PDF from here and here. The paper is titled:
"Call Me Maybe: Eavesdropping Encrypted LTE Calls With ReVoLTE."
Click to expand...
 
  • Like
  • +Reputation
  • Wow
Reactions: Protomartyr, Gandalf_The_Grey, upnorth and 5 others
[correlate]

[correlate]

Level 18
Verified
Top Poster
Well-known
May 4, 2019
825

Call Me Maybe: Eavesdropping Encrypted LTE Calls With ReVoLTE

Radix Security’s mission is to enable everyone to build and use secure mobile networks. Therefore we training, consulting and tools. Tools like Radix Security SEAL allow you to test and secure your mobile network. network. We use AI and machine learning to provide you with the best possible...
revolte-attack.net revolte-attack.net
 
  • Like
Reactions: Protomartyr, Gandalf_The_Grey, silversurfer and 1 other person
upnorth

upnorth

Level 68
Verified
Top Poster
Malware Hunter
Well-known
Jul 27, 2015
5,458
Am I vulnerable?

In initial tests, the researchers found that 12 of 15 randomly selected base stations in Germany reused keystreams, making all VoLTE calls transmitted through them vulnerable. After reporting their findings to the industry group Global System for Mobile Applications, a retest found that the affected German carriers had fixed their base stations. With more than 120 providers around the world and over 1,200 different device types supporting VoLTE, it will likely take more time for the eavesdropping weakness to be fully eradicated. “However, we need to consider a large number of providers worldwide and their large deployments,” the researchers wrote. “It is thus crucial to raise awareness about the vulnerability.”

The researchers have released an Android app that will test if a network connection is vulnerable. The app requires a rooted device that supports VoLTE and runs a Qualcomm chipset. Unfortunately, those requirements will make it hard for most people to use the app.
Click to expand...
The researchers provide several suggestions that cellular providers can follow to fix the problem.
Click to expand...
arstechnica.com

Hackers can eavesdrop on mobile calls with $7,000 worth of equipment

VoLTE calls were supposed to be more secure. A fatal flaw can unravel that promise.
arstechnica.com arstechnica.com
 
  • Like
  • +Reputation
  • Thanks
Reactions: Protomartyr, harlan4096, [correlate] and 2 others
You must log in or register to reply here.

Similar threads

upnorth
    • Like
    • +Reputation
Boffins break VoLTE Phone Security
Replies
1
Views
605
News Archive
HarborFront
H
Trident
    • Like
    • +Reputation
    • Hundred Points
Serious Discussion Harmony Endpoint by Check Point
Replies
685
Views
59,005
Other security for Windows, Mac, Linux
simmerskool
simmerskool
Lenny_Fox
    • Wow
    • Like
    • +Reputation
News article scoop on Huawei snooping on Dutch mobile network (since 2010)
Replies
4
Views
2,031
News Archive
HarborFront
H

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top