Who’s responsible for fixing SS7 security issues?

The WannaCry ransomware onslaught has overshadowed some of the other notable happenings this month, including the spectacular Google-themed phishing/spamming attack, and the news that attackers have managed to exploit vulnerabilities in the SS7 protocol suite to bypass German banks’ two-factor authentication and drain their customers’ bank accounts. According to the reports, the attackers were able to pull this scheme off by gaining access to the network of a foreign mobile network operator, and using that access to set up call and SMS forwarding for the targets’ mobile phone number.

Read full news article on Help Net Security

 


Date:

Categorie(s):