So wait. They're not passing a PGP / encryption key pair? What?
SS7 spookery on the cheap allows hackers to impersonate mobile chat subscribers
Flaws in the mobile signalling protocols can be abused to read messaging apps such as WhatsApp and Telegram. Security researchers at Positive Technologies found they can intercept messages and respond as if they were the intended recipient in services such as WhatsApp or Telegram. This is not a man in the middle attack: …
COMMENTS
-
-
Tuesday 10th May 2016 13:26 GMT Skoorb
Here's how it works:
In WhatsApp, your handle/username is your phone number in E.164 format (so +441242221491 for example).
To verify you control that number, when you register, WhatsApp sends the number you enter a verification SMS, which if you receive it authenticates you to access the account associated with that number.
There's something I don't get though. I thought that the SMS contained a random 6 digit number, which had to be entered into the app and transmitted to the server for validation. Only if that number matches what was sent in the SMS does the server authenticate the request. How the heck does SS7 signalling allow you to intercept incoming SMS messages directed to someone else's number?
Anyone care to explain this?
-
Tuesday 10th May 2016 05:16 GMT Christian Berger
The problem is the mindset
There are people in the telco business which still believe that their networks are somehow sacred and that nobody with a bad intention can get in there. That's why some telcos will happily provide you with the username of the PPPoE session the user is using on the first invite.
-
Tuesday 10th May 2016 11:01 GMT Anonymous Coward
And that..
.. ladies and gentlemen, is why you always have a side channel key confirmation before you trust a connection, otherwise it's not Man In The Middle proof.
I'm a bit disappointed, that has been a standard component for most pretend secure (usually ZRTP based) VoIP apps for years (I say pretend because there are very few who are able to withstand independent audit). At least they got that bit right.
-
Tuesday 10th May 2016 12:00 GMT Bronek Kozicki
Interesting
EFF gives Telegram (secret chats) all green points, I wonder whether EFF missed something or the problems reported do not affect "Telegram (secret chats)", only "less secure" Telegram
-
This post has been deleted by its author