All Android Devices Vulnerable To New LTE Security Flaw
Android’s latest vulnerability involves potential attacks against the Session Initiation Protocol (SIP), which could result in eavesdropping, data spoofing, and over-billing.
Researchers have found a method that exploits the way that SIP works, by spoofing phone numbers for calls or text messages. It's also possible for an attacker to obtain free bandwidth for more data-intensive activities, like video calling, without incurring any additional costs. In some cases, an attacker can establish multiple SIP sessions at the same time, which could lead to a denial-of-service attack on the network.