ReVoLTE attack can decrypt 4G (LTE) calls to eavesdrop on conversations

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,151
Content source
https://www.zdnet.com/article/re-vol-te-attack-can-decrypt-4g-lte-calls-to-eavesdrop-on-conversations/
Academics detail a new attack on 4G encrypted calls. Attack works only when the attacker is on the same base station (mobile tower) as the victim.

A team of academics has detailed this week a vulnerability in the Voice over LTE (VoLTE) protocol that can be used to break the encryption on 4G voice calls.

Named ReVoLTE, researchers say this attack is possible because mobile operators often use the same encryption key to secure multiple 4G voice calls that take place via the same base station (mobile cell tower).

Academics say they tested the attack in a real-world scenario and found that multiple mobile operators are impacted, and have worked with the GSM Association (GSMA), the organization that governs telephony standards, to have the issue resolved.
Click to expand...
A scientific paper detailing the ReVoLTE attack is also available for download as PDF from here and here. The paper is titled:
"Call Me Maybe: Eavesdropping Encrypted LTE Calls With ReVoLTE."
Click to expand...
 
  • Like
  • +Reputation
  • Wow
Reactions: Protomartyr, Gandalf_The_Grey, upnorth and 5 others
upnorth

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,459
Am I vulnerable?

In initial tests, the researchers found that 12 of 15 randomly selected base stations in Germany reused keystreams, making all VoLTE calls transmitted through them vulnerable. After reporting their findings to the industry group Global System for Mobile Applications, a retest found that the affected German carriers had fixed their base stations. With more than 120 providers around the world and over 1,200 different device types supporting VoLTE, it will likely take more time for the eavesdropping weakness to be fully eradicated. “However, we need to consider a large number of providers worldwide and their large deployments,” the researchers wrote. “It is thus crucial to raise awareness about the vulnerability.”

The researchers have released an Android app that will test if a network connection is vulnerable. The app requires a rooted device that supports VoLTE and runs a Qualcomm chipset. Unfortunately, those requirements will make it hard for most people to use the app.
Click to expand...
The researchers provide several suggestions that cellular providers can follow to fix the problem.
Click to expand...
arstechnica.com

Hackers can eavesdrop on mobile calls with $7,000 worth of equipment

VoLTE calls were supposed to be more secure. A fatal flaw can unravel that promise.
arstechnica.com arstechnica.com
 
  • Like
  • +Reputation
  • Thanks
Reactions: Protomartyr, harlan4096, [correlate] and 2 others
You must log in or register to reply here.

Similar threads

upnorth
    • Like
    • +Reputation
Boffins break VoLTE Phone Security
Replies
1
Views
414
News Archive
HarborFront
H
Trident
    • Like
    • +Reputation
    • Hundred Points
Serious Discussion Harmony Endpoint by Check Point
Replies
677
Views
44,798
Other security for Windows, Mac, Linux
Sandbox Breaker
Sandbox Breaker
Lenny_Fox
    • Wow
    • Like
    • +Reputation
News article scoop on Huawei snooping on Dutch mobile network (since 2010)
Replies
4
Views
1,924
News Archive
HarborFront
H

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top