Foil hackers, talk in code

commence phase 3 project bagoda
gift horse in the corral
alert
 
Eagle One, Flaming Fox here. Please commence operation screaming queen over at the beast - report status to Jumping Jack Flash.
 
Moederloos said:
Easy enough - just speak in English, with clear enunciation and perfect grammar...

:D
Click to expand...

ROFL! :D

The linguistic nature of our folly will most assuredly confound the powers of our state into humble numbing stupidity should they try to acquire knowledge from this phonetically and liberally dosed paragraph filled with language I humbly attempted to put in the stratosphere of intellectual understanding. I am fearful I may have neglected to succeed in my aim, but it is a liberal attempt at getting my idea across in graphical form via your Cathode Ray Tube or Liquid Crystal Display...
 
antowan said:
ROFL! :D

The linguistic nature of our folly will most assuredly confound the powers of our state into humble numbing stupidity should they try to acquire knowledge from this phonetically and liberally dosed paragraph filled with language I humbly attempted to put in the stratosphere of intellectual understanding. I am fearful I may have neglected to succeed in my aim, but it is a liberal attempt at getting my idea across in graphical form via your Cathode Ray Tube or Liquid Crystal Display...
Click to expand...

Antowan speak with forked tongue.
:p
 
antowan said:
The linguistic nature of our folly will most assuredly confound the powers of our state into humble numbing stupidity should they try to acquire knowledge from this phonetically and liberally dosed paragraph filled with language I humbly attempted to put in the stratosphere of intellectual understanding. I am fearful I may have neglected to succeed in my aim, but it is a liberal attempt at getting my idea across in graphical form via your Cathode Ray Tube or Liquid Crystal Display...
Click to expand...
what precociously loquacious obfuscation - kudos to the cunning linguist
 
Reminds me of:

Do you insinuate that I shall tolerate such diabolical insolence from a mere microscopical individual such as yourself, whose mental incapacity is far beyond my comprehension?
 
Jokes aside, I wonder how much traffic is actually really carp? If I were a terrorist, I would ensure that 99% of my communications were gibberish, misleading or tedious - then, the 1% that is legit would be "lost in the haystack".
 
I seriously doubt that hacking a cell phone is possible..... we have a digital system and if people know whot systems the networks use they wud understand that duplication of sim cards is nto possible at all. also to get the exact frequecy that that user may be on at that exact time as well as which time slot they have been allocted and the timing of that time slot... then they wud understand that it aint gonna happen...... not with anything bought over the internet....

Unless they forking out huge bucks for Siemens AUC's/EIR/HLR's and some really cheap MSC's...... for some backyard hacker trying to listen to his ex-girlfriends call to her new boyfriend... hhhmmmm much cheaper was of getting over it..
 
Professional criminals always talk in code. It's the reason monitoring of calls usually turns up no useful information. Certainly nothing that can be used as evidence in court.
 
This isn't really new news, people were able to clone sim cards for years now. How do you think a sim swap works when your cell gets stolen? pff
 
rehd said:
I seriously doubt that hacking a cell phone is possible..... we have a digital system and if people know whot systems the networks use they wud understand that duplication of sim cards is nto possible at all.
Click to expand...

Not true. There's an information leakage attack on the challenge-response protocol that a lot of GSM networks use for auth (COMP128) that allows you to extract the Ki associated with a particular SIM.

You're probably looking at around 0.5m queries, so this is usually done by physically possessing the SIM card/phone for a few hours, before returning it, but it is certainly theoretically possible to construct your own base station and take it to a targets location (overnight, pref, battery will probably drain quite a bit with this) and perform the same attack over the air.

Once you've pulled the Ki, the stream ciphers used to encrypt voice traffic are dead in the water. The biggest problem for private people would likely be, as you have identified, the hardware to pull and follow conversation streams. However, if you manage to pull off the over-the-air attack mentioned above, chances are that you'd be capable of managing this, too.


I agree with your sentiment about there being cheaper ways to deal with the listening in problem. .gov.za have forced monitoring facilities onto the mobile networks, so you know that they're there. Social engineering these might be an easier idea, albeit one that has a far higher degree of traceability IMO.
 
Last edited:
AcidRaZor said:
This isn't really new news, people were able to clone sim cards for years now. How do you think a sim swap works when your cell gets stolen? pff
Click to expand...

SIM swaps don't result in cloned SIMs. All that happens is that the subscriber register is updated to associate a new SIM with a particular subscriber.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X