5G Archives – Gridinsoft Blog https://gridinsoft.com/blogs/tag/5g/ Welcome to the Gridinsoft Blog, where we share posts about security solutions to keep you, your family and business safe. Fri, 26 Mar 2021 14:34:13 +0000 en-US hourly 1 https://wordpress.org/?v=69287 200474804 Experts have discovered bugs in the 5G protocol that allow tracking location and arranging of DoS attacks https://gridinsoft.com/blogs/experts-have-discovered-bugs-in-the-5g/ https://gridinsoft.com/blogs/experts-have-discovered-bugs-in-the-5g/#respond Fri, 26 Mar 2021 14:34:13 +0000 https://blog.gridinsoft.com/?p=5307 AdaptiveMobile specialists have published a report on new bugs in the 5G protocol, thanks to which it is possible to disable network segments (DoS) and steal user data, including location information. The issues identified are related to the 5G network partitioning mechanism that allows operators to split their infrastructure into smaller blocks dedicated to specific… Continue reading Experts have discovered bugs in the 5G protocol that allow tracking location and arranging of DoS attacks

The post Experts have discovered bugs in the 5G protocol that allow tracking location and arranging of DoS attacks appeared first on Gridinsoft Blog.

]]>
AdaptiveMobile specialists have published a report on new bugs in the 5G protocol, thanks to which it is possible to disable network segments (DoS) and steal user data, including location information.

The issues identified are related to the 5G network partitioning mechanism that allows operators to split their infrastructure into smaller blocks dedicated to specific purposes (for example, automotive, healthcare, critical infrastructure and entertainment, and so on).

bugs in the 5G protocol

The discovered vulnerabilities can be exploited in hybrid mobile networks, where 5G is mixed with older technologies. Such options will be found in the real world in the next years, when 5G technology will gradually replace the rest.

Attacks are possible due to the lack of mapping between application and transport layer identifiers, which allows potential attackers to impersonate legitimate network functions in hybrid 5G networks.

As a result, if an attacker manages to compromise the operator’s peripheral network equipment, he can abuse 5G functions to implement DoS attacks against other network segments or extract information from neighboring network segments, including subscriber data (for example, location data).

The researchers also warn that scenarios are possible when the operator’s partners, who are granted access to network segments, can abuse their privileges to attack other parts of the network.

bugs in the 5G protocol

AdaptiveMobile has already notified the 3GPP consortium (responsible for developing of the 5G standard), the GSMA and the mobile operators industry group about the problems. Experts say that protection against these attacks may require the development of some large features that may be added in Release 17.

Release 17 (or Rel-17) is the version of the 5G standard that is currently in development and should be released in mid-2022.

Currently, the impact on real-world applications of this network slicing attack is only limited by the number of slices live in 5G networks globally. The risks, if this fundamental vulnerability in the design of 5G standards had gone undiscovered, are significant. Having brought this to the industry’s attention through the appropriate forums and processes, we are glad to be working with the operator and standards communities to highlight this issue and promote best practice going forward.said Dr. Silke Holtmanns, Head of 5G Security Research at AdaptiveMobile Security.

Let me also remind you that I wrote that Vulnerabilities in old GTP protocol could affect 4G and 5G networks.

The post Experts have discovered bugs in the 5G protocol that allow tracking location and arranging of DoS attacks appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/experts-have-discovered-bugs-in-the-5g/feed/ 0 5307
5G and it’s possible effect on our lives https://gridinsoft.com/blogs/5g-and-its-effect-on-our-lives/ https://gridinsoft.com/blogs/5g-and-its-effect-on-our-lives/#respond Mon, 07 Dec 2020 11:18:20 +0000 https://blog.gridinsoft.com/?p=2981 5G networks are declared as an amazing technology that can allow us to use different options of ultra high speed connection. The biggest 5G network in the world is located in China, where people can feel the 5G effect in summer 2020. But a lot of problems were uncovered after such massive testing. One of… Continue reading 5G and it’s possible effect on our lives

The post 5G and it’s possible effect on our lives appeared first on Gridinsoft Blog.

]]>
5G networks are declared as an amazing technology that can allow us to use different options of ultra high speed connection. The biggest 5G network in the world is located in China, where people can feel the 5G effect in summer 2020. But a lot of problems were uncovered after such massive testing. One of the most disappointing things is the low coverage range: cellular carriers were forced to set up much more cellular towers to cover the stated range. Nowadays, the 5th generation network is much more expensive than 4G. And for the majority of users, who do not require ultra-fast connection with a low ping rate, such an overpayment is completely unnecessary.

Technology is at a low start

History remembers a lot of examples when a genius discovered something innovative and hard-to-imagine, but this thing attracted no attention because such mechanism or technology had no usage that time. And the real appreciation for this invention came only in 100-200 years when the scientists decided that invented-but-forgotten thing may be capable of solving the unsolvable problem they met.

Nowadays, time flows much faster, and things that were considered pointless 5 years ago may be declared as new generation technology these days and then spread in the mass market. As an example – Tesla: there were a lot of people who thought that Musk is a halfwit and his company will fail.

However, these days it is the biggest automobile company in the world. And such a success is based on an idea of manufacturing only electric cars – not a new thought but considered unreal by most automobile companies because of the low popularity of electric cars.

5G is hard to compare with Tesla – first uses completely new technology, while electric cars were produced even in the previous century. But it has several common signs with Tesla’s way: 5th generation networks can also amaze its possible functions, but these days it has too many problems to assume that it is ready for the mass market. Let’s discover which 5G effects can be extremely useful and make this technology so attractive for investors.

5G and IoT

The Internet of Things (IoT) develops amazingly. Many more devices for smart houses/offices appear year-to-year, big companies like Xiaomi and Apple, creating a closed IoT ecosystem for their devices. And it is easy to create such a network at home or in a small office – the connection speed of Wi-Fi/LTE is enough to provide a sustainable operating of IoT. But when we talk about hotels, offices of large companies, or home systems with big Internet traffic consumption, mentioned ways of Internet connection are not enough. 5G solves this problem, providing the connection speed up to 10 times faster than present methods. After the 5G implementation, the Internet of Things will get an enormous popularity boost.

Internet of Things

5G and virtual reality (VR)

Virtual reality content services are struggling to develop because of low connection speed. And we are talking about live streaming services, which require a stable and fast Internet connection. Adventure games through VR are exciting. However, they are hard to play in multiplayer mode: significant ping and unsatisfactory connection speed, crops can have fun on quarantine. Greenland VR tours through the island are trendy, but many people who tried this awesome tour noted that the lag between the command and action is considerable. The main 5G implementation effect allows users to have slightly above zero pings, so their in-game actions feel live and real.

Virtual Reality services and 5G

Network of new era and cloud services

Cloud computing and cloud gaming, in particular, are two sectors that are waiting for 5G networks implementation with the same impatience as man is waiting for a taxi on a rainy day. And while such cloud gaming services as Google Stadia can operate with the current Internet speed rate, cloud computing is barely able to show the full potential with an average connection speed of about 100 Mbps. Computer manufacturers are making prognoses about a new model of personal computer usage. Just imagine: you are purchasing only the monitor, which has a 5G chip, keyboard, and mouse, then connecting to the cloud computing service and choosing the fitting computer parameters – CPU/GPU/RAM amount, as well as the operating system. Then, you can use your PC as usual, with the only difference that all computing will be performed on the server. Isn’t that amazing?

Fears and gossips around 5G

People showed a completely different reaction on 5G appearance. Someone was happy to see that such a progressive technology is available for the public, but a massive number of people seriously think that 5G can harm their health; a small group of people stated that the coronavirus pandemic is caused by 5G towers. But such people have completely forgotten about the Wi-Fi, 3G/4G, radio- and television waves, which cause no fears or disputes. 5G is as safe as any other type of radio waves1, and even more : nowadays 5G waves have an extremely low penetrating power, so it’s very easy to “hide” from “harmful” 5G inside of any building.

5G harmlessness

The post 5G and it’s possible effect on our lives appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/5g-and-its-effect-on-our-lives/feed/ 0 2981
IMP4GT Vulnerability in LTE Threatens Almost All Modern Smartphones https://gridinsoft.com/blogs/imp4gt-vulnerability-in-lte-threatens-almost-all-modern-smartphones/ https://gridinsoft.com/blogs/imp4gt-vulnerability-in-lte-threatens-almost-all-modern-smartphones/#respond Tue, 25 Feb 2020 16:21:57 +0000 https://blog.gridinsoft.com/?p=3494 Experts from Ruhr University reported an IMP4GT (IMPersonation Attacks in 4G NeTworks) problem. Modern LTE-enabled devices are vulnerable to IMP4GT, therefore, it threatens almost all smartphones, tablets, and IoT devices. A bug allows simulating another user’s operator’s network, which means an attacker will be able to issue paid subscriptions at the expense of other people… Continue reading IMP4GT Vulnerability in LTE Threatens Almost All Modern Smartphones

The post IMP4GT Vulnerability in LTE Threatens Almost All Modern Smartphones appeared first on Gridinsoft Blog.

]]>
Experts from Ruhr University reported an IMP4GT (IMPersonation Attacks in 4G NeTworks) problem. Modern LTE-enabled devices are vulnerable to IMP4GT, therefore, it threatens almost all smartphones, tablets, and IoT devices.

A bug allows simulating another user’s operator’s network, which means an attacker will be able to issue paid subscriptions at the expense of other people or publish something (for example, secret documents) under the mask of other files.

“In mobile networks, mutual authentication ensures that the smartphone and the network can verify their identities. In LTE, mutual authentication is established on the control plane with a provably secure authentication and key agreement protocol. However, missing integrity protection of the user plane still allows an adversary to manipulate and redirect IP packets”, — write experts from Ruhr University.

A key element of IMP4GT attacks is software-defined radio (this is why an attacker must be close to his victim in order to carry out an attack). Such a device is capable of intercepting signals between a mobile device and a base station, and, using them, trick a smartphone into giving itself up to a base station, or, on the contrary, trick a network into pretending to be a smartphone. As soon as the communication channel is compromised, manipulation of the data packets that circulate between the device and the base station begins.

“Data packets between the mobile phone and the base station are transmitted in encrypted form, which protects data from listening. However, it is possible to modify these data packets. We don’t know what is in the data packet, but we can provoke errors by changing bits from 0 to 1 or from 1 to 0”, – say the experts.

As a result, such bugs can force the mobile device and the base station to decrypt or encrypt messages, convert information into plain text, or create a situation where an attacker can send commands without authorization.

Such teams can be used to purchase paid subscriptions or to book services (when someone else pays the bill), but they can also have more serious consequences. For example, an attacker can visit sites under another person’s account and transmit information on behalf of another person, thereby substituting other people.

The authors of the study emphasize that IMP4GT attacks are dangerous for some 5G networks. The vulnerability can be eliminated in 5G networks by introducing mandatory integrity protection at the user level, but this will require considerable expenses on the part of telecom operators (additional protection will generate large data transfer, and base stations need changes), as well as replacing existing smartphones.

Specialists will present a detailed report on the problem at the NDSS Symposium 2020 conference, which will soon be held in San Diego.

Finally, I remind you that data privacy is quite shaky thing, and so: for example, US authorities can hack iPhone, but may have difficulties with Android.

The post IMP4GT Vulnerability in LTE Threatens Almost All Modern Smartphones appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/imp4gt-vulnerability-in-lte-threatens-almost-all-modern-smartphones/feed/ 0 3494