Friday August 26, 2016

Critical Flaws Let Attackers Hijack Cellular Phone Towers

Let's pretend for a moment you are a hacker, what would you do with a hijacked cell phone tower? I could see the value if you were the government, they do this stuff all the time. Maybe I just don't think like a hacker but I just don't know what the hell you would do with a hacked cell phone tower.

Mobile security firm Zimperium, the company that found the Stagefright bug, says it discovered three critical flaws in several software packages that run on BTS stations. According to Zimperium, other software packages not included in their tests might also be affected since they all seem to run in the same manner, with a similar architecture. Affected vendors and their software include Legba Incorporated (YateBTS <= 5.0.0), Range Networks (OpenBTS <= 4.0.0 and OpenBTS-UMTS <= 1.0.0), and OsmoCOM (Osmo-TRX <= 0.1.10 and Osmo-BTS <= 0.1.10).