'SMS of Death' Could Crash Many Mobile Phones 108
space_in_your_face writes "Research presented at a conference in Germany last week shows that phones don't even have to be smart to be vulnerable to hackers. Using only Short Message Service (SMS) communications, a pair of security researchers were able to force low-end phones to shut down abruptly and knock them off a cellular network. The trick works for handsets made by Nokia, LG, Samsung, Motorola, Sony Ericsson, and Micromax, a popular Indian cell-phone manufacturer."
Ahhhhhhhhh (Score:2, Funny)
No more stupid ring tones, no more boss (or wife) calls...
GREAT !
Re: (Score:1)
You realize there is a "Power" button on your phone?
By pushing that for 3 seconds, the phone physically powers off, thereby creating the same effect.
Re:Ahhhhhhhhh (Score:4, Insightful)
Re: (Score:2)
Re: (Score:2)
+1 Slack
--
"But this one goes to 11!"
Slackware is up to 13.1, though.
Well past 11.
Re: (Score:2)
You Bob-hugging lads need to remember that it is all a matter of perspective. Perspective does not cost $30. Someone is stealing from YOU!
Hail Eris! All hail Discordia!
Re: (Score:2)
Taunting the Bob-huggers is uncool. All sects of Discordia are the One True Discordia, especially those that explicitly contradict one another.
Re: (Score:1)
The subgenius can have all my slack they can carry. There are not enough subgenius in all of history to impact my slack. You Bob-hugging lads need to remember that it is all a matter of perspective. Perspective does not cost $30. Someone is stealing from YOU! Hail Eris! All hail Discordia!
I'll happily pay tax on my religion - and if I go to Hell I get my $30 back. You can keep yours *and* let someone else pull the wool over your eyes.
Re: (Score:2)
You have the button, but this is better : you have the EXCUSE
My iPhone behaves that way without touching a button or getting a message. Well, I do have to actually power it off myself, but otherwise the effect is identical. Apps just close, the internet just drops, calls end on their own, all with a full signal!
Re: (Score:1)
But how are you going to play FarmVille & FrontierVille with the phone off?
Disclaimer: I've farmed in real life, and I really couldn't be bothered with doing it in a game.
Re: (Score:2)
Disclaimer: I've farmed in real life, and I really couldn't be bothered with doing it in a game.
Farm games are old now, and I'm still shocked whenever I see one. I would never have believed that "virtual farming" would catch on! To me, that's right up there with "virtual watching paint dry" and "virtual watching grass grow". Actually, for some crops it is "virtual watching grass grow". I have to admint, I no longer understand today's youth. Kids, lawn, etc.
Re: (Score:2)
"Why didn't you answer my call. Where were were you. What were you doing? What are you up to?, Soooo.... I'm going to need you to work Saturday".
vs
"Aww honey, I tried to call my my phone was acting up. Could you take a look at it."
"You're lucky my phone was acting up. I almost called you in for a double shift. I was able to catch Smith before he left."
Re: (Score:2)
No surprise there - I did already do that back in '02 on a Nokia. I had to move the SIM card to a SonyEricsson phone to delete the offending SMS.
So it's possible, but the message may have to be specific for the phone/model.
Re: (Score:1)
Buddy, the last time I chose to use IE was on Windows 3, probably IE3.
There were dark days when Netscape 4 couldn't cut it, before Mozilla appeared, when IE was one of the only alternatives, but to be honest I persevered with Netscape and only used IE when sites crashed Netscape. By then though, I was using an advert and junk blocking proxy, so much of what could upset Netscape didn't get through. There was no stopping the effect nested tables had on NN though, nor the fact it would hold the CPU at 100% whi
Re: (Score:1)
I do use FF with NS and AB, so I was presented with a blank grey page between clicking the link for TFA and getting to TFA. TFA had no adverts surrounding it, but that is not the point. The experience presented to me was fucking annoying, and it must only be worse if the adverts are there!
You don't need another extension - Flashblock, Adblock Plus, NoScript, and BugMeNot are all the extensions you'll ever require. All you need to do is learn how to use "Open in New Tab" - it takes all of 5 seconds *while you're reading TFA* for the referenced grey page to load the text. I had to go back and do it all again - very fucking slowly to find out what you're blathering about Buddy.
No one asked about your bloody boring history of browsers - now get off my lawn.
Re: (Score:1)
Re: (Score:3)
Where I come from boss == wife.
No wonder you're here instead.
Re: (Score:2, Funny)
Peace, at last !
No more stupid ring tones, no more boss (or wife) calls...
GREAT !
Hello quiet my old friend.
Within the SMS of silence.
Re: (Score:1)
I've noted that pop-culture references to more than 40 years ago do not do well here on the slashdots. (Modulo Star Trek, of course.)
Re: (Score:2)
What? I got it. Heck we make Burma Shave jokes around here.
Re: (Score:2)
> Heck we make Burma Shave jokes around here.
Despite the fact that there are only three of us here who have seen an actual Burma Shave sign.
So ... (Score:2)
Re:So ... (Score:4, Funny)
Re: (Score:2)
Might be a bit expensive though.
Re: (Score:2)
That's what unlimited text messaging plans are for!
Re: (Score:3)
Re: (Score:3)
there's always AT&T... maybe start with them... their webpage allows sending of sms for free.
...and there you go. (SMSes of death * shellscript) / unsecured wifi = weapon of mass pwnage.
Re: (Score:2)
Or just email the magic SMS emails. phonenumber@vtext.com and things of that nature. (See 'List of SMS Gateways' on Wikipedia, slashdot has somehow prevented me from pasting the url into the damn box)
Re: (Score:2)
Not if you have a BOOST or similar carrier (flat $50/month fee)
Re: (Score:2)
Re: (Score:3)
And if you're in the UK, you'd be stuck too, since all mobile numbers start 07, and have nothing to do with your local area code which only apply to landlines.
Re: (Score:2)
Re: (Score:3)
At least you know you'd only be addressing mobile phones (you'd need to be a bit more careful than just 07, but the ranges are on the Wikipedia article for UK numbers).
SMSing the 10,000,000 numbers in a US area code region is going to hit a lot of landlines.
Re: (Score:1)
Also, 555-0100 through 555-0199 are reserved for use in fiction (though other 555 numbers are valid).
Source: http://en.wikipedia.org/wiki/North_American_Numbering_Plan#Current_system [wikipedia.org]
Re: (Score:1)
Re: (Score:2)
Hmm, that would give a regex of: [2-9]([02-9][0-9]|1[02-9])([2-46-9][0-9]{6}|5[0-9][0-46-9][0-9]{4}|555[1-9][0-9]{3}|5550[02-9][0-9]{3})
(I know, I know, a regex is for matching, not for iterating, but since I'm not using any variable-length operators, you could iterate based on that pattern.)
Of course, that doesn't account for unassigned/unused [wikipedia.org] NPAs; removing those from the list would shorten it considerably.
Re: (Score:3)
Instead of 10,000,000,000 permutations, you only have 6,400,000,000
It is called NANPA [nanpa.com] and there are a few other reserved numbers mixed in (for example, in an NXX group, both Xs can not be 1 to avoid confusion with N11 services such as 911).
Wikipedia [wikipedia.org] also has a good article about this.
Re: (Score:2)
You might need to define vicinity. One option is to send the programmatically SMS of death to every possible combination of mobile phone numbers within you area code. That might hit a few that have roamed outside your area, but would largely accomplish your task.
Nah, that would never work where I live. University town, nobody bothers to get a new phone number when they move across the country these days. I think we better hit all the mobile numbers, just to be sure. Make sure you sign up for unlimited messaging first, though.
Re: (Score:2)
1. Carry a picocell base station around with you. ...
2. Send SMS of death
3. Profit
It's worth noting that it isn't necessary to send the SMS, since you can silently block all calls/texts if they're connecting to your station.
Re: (Score:1)
They set up their own base station using free software. That gives them access to the phone numbers. Then it would just be a matter of sending the SMS messages Even a standard wireless modem would allow a regular PC to send SMS messages via AT commands for GSM/CDMA wireless modems. Some phones support "long messages" which are just short messages chained together by software. There is a maximum of 160 characters with Latin alphabets and 70 characters with Chinese or Arabic alphabets (unicode?). That seems t
Re: (Score:2)
... how do I address this 'SMS of death' message to all the phones in my immediate vicinity?
Use a cell broadcast [wikipedia.org]!
Re: (Score:1)
So set up a fake cell-tower thats configured to get all nearby phones onto it, and then blast them with an SMS Of Death ...
Me likes...
Re: (Score:2)
Use the cell broadcast service, that's what it's for.
Desired future news: (Score:5, Insightful)
Sending the "SMS of Death" has become common practice at theaters in order to finally force people's cell phones to stop ringing.
Re: (Score:3)
I thought that was just jamming, and I also saw someone else saying they had to stop doing that to allow emergency calls from movie theaters?
Re:Desired future news: (Score:5, Insightful)
Ah, the good old "put half of my post in the title, even though a lot of people skim past the titles since they're usually full of Re:re:re:re:re:". Oops.
Re: (Score:1)
Re: (Score:2)
In that case I must say that it's quite impressive that he knew I'd reply before he posted.
Re: (Score:2)
Re: (Score:2)
MOD PARENT UP
MOD PARENT DOWN
Re: (Score:1)
Awww (Score:1)
While it might be possible, whats the incentive? (Score:2)
Sure, you might get a few hackers who do it for curiousity to a few numbers with a few types of phones, but eventually they'll get bored and move on to something else. Unless its easy to create binaries that can do something useful to a crim and its easy to send these binaries to ALL types of phones fast then criminal hacker types are unlikely to get involved since its far easier to earn money screwing around with PCs.
Re: (Score:2)
If the telcos really can't stop this you could make some good dough holding their network for ransom. They wire you some cash (not too much, it has to be much cheaper for them to pay, stay in the 5-digit range) or you bring all their phones down. During the ransom call (make sure you've got the guy on a wired phone) you demonstrate your attack on everyone in the office (not using the same source as the actual attack of course, probably best to use an untraceable prepaid or stolen SIM with a USB GSM adapter
Re: (Score:1)
VoD of the Talk (Score:5, Informative)
No surprises (Score:4, Funny)
Re: (Score:2)
I had a cheap virginmobile too at one point. It was a rusted out deathtrap of a ford escort that was given to me for free by my older brother. The passenger door was held shut by a bungee cord, the drivers seat bolts were rusted out making it unattached, it vented thick smoky exhaust directly into the cabin through a gaping hole in the dashboard.
Re: (Score:1)
Re: (Score:2)
Re: (Score:2)
You should have seen the LG I had five or six years ago. Crash? It would do all sorts of crazy things, like the screen going backwards, upside down, display garbage.
I sent it back under warrantee, and the one they replaced it with was even worse.
So no more LG tech for me, they obviously have some horrible quality control.
Re: (Score:1)
How permanent is it? (Score:2)
Re: (Score:1)
Re: (Score:2)
Re: (Score:2)
A power cycle usually fixes it.
However, sometimes the SMS that killed the phone would crash it before the SMS could be acknowledged, so right after re-registering on the same network, the phone would get the SMS again and crash. Usin
Re: (Score:2)
However, sometimes the SMS that killed the phone would crash it before the SMS could be acknowledged, so right after re-registering on the same network, the phone would get the SMS again and crash. Using a non-vulnerable phone to retrieve the problematic SMS fixes it. Or you can just live without a cellphone for a few days untilt he SMS times out.
Or pack the phone in hat liner, turn it on, turn off automatic SMS acceptance, restore service, and say "no" to the next SMS.
Google Voice (Score:1)
Corrected URL (Score:2)
I was getting 404 errors following the original URL.
Corrected URL below:
http://www.technologyreview.com/communications/27021/?p1=MstRcnt [technologyreview.com]
it's not a buggy phone... (Score:2)
it's a feature phone!
Executable SMS? (Score:1)
Re: (Score:1)
They are executing binary data. User messages are supposed to be text, but the carriers also use the SMS infrastructure for other things.
Re: (Score:3)
For specific purposes carriers may provision SMSC (short message service centers) and GMSC (gateway message service centers) to send binary data to interact with applications on the mobiles.
In practice, this is very rare because the carriers have known for a long time that binary payloads may be susceptible to misuse for malicious reasons. Thus, very few originators of short messages are permitted to send binary payloads (or at least when I was doing this a few years ago, maybe now it's different).
This is
Re: (Score:2)
Re: (Score:2)
Who's laughing now! (Score:2)
Re: (Score:1)
Re: (Score:2)
Re: (Score:2)
Someday I may get a current phone, when I have more people to call :-(
Re: (Score:2)
Feh. (Score:1)
That's not an SMS of death....merely an SMS of irritation.
An SMS of death would involve the recipient's head exploding. Literally.
A signal that could cause the Li-ion batteries to forcibly discharge at once might qualify, as well, but I wouldn't want to make that call. (pun intended)
Block text messages? (Score:1)
(Which subsequently produces meat-space spam to arrive I've found.)
http://www.supercars.net/gallery/132464/1542/873030.jpg [supercars.net]
twice ridiculous (Score:5, Informative)
1.This post (and the linked-to article) make a great effort to hide the name of the "conference in Germany". $deity knows why, but the conference was the 27th Chaos Communication Congress (27C3) [events.ccc.de], organised by the Chaos Computer Club [ccc.de].
2.The "SMS of death" was not new in any way - it was well known and discussed back in 2008 at the 25C3. What the researchers effectively showed was that the manufacturers and the GSM networks had *still* not fixed the problem, even years later!
Who needs hackers? (Score:1)
Motorola is WAY ahead of these guys. My Motorola CLIQ with "Blur" already shuts itself off randomly and for no evident reason. Who needs a hacker to remotely shut off your phone against your will when the feature is already built-in? :)
Big Deal (Score:2)
Ah, memories... so like the Ping Of Death (Score:1)
Even the names of the old tools, Teardrop and Boink, would be suitable... good times
And this is a bad thing? (Score:2)
SMS Content? (Score:3, Funny)