Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror

Submission + - AT&T breach worse than initially thought?->

ChrisPaget writes: I'm somewhat of an authority on GSM security, having given presentations on it at Shmoocon and CCC (I'm also scheduled to talk about GSM at this year's Defcon). This is my take on the iPad ICCID disclosure — the short version is that (thanks to a bad decision by the US cell companies, not just AT&T) ICCIDs can be trivially converted to IMSIs, and the disclosure of IMSIs leads to some very severe consequences such as name and phone number disclosure, global tower-level tracking, and making live interception a whole lot easier. My recommendation? AT&T have 114,000 SIM cards to replace and some nasty architectural problems to fix.
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

AT&T breach worse than initially thought?

Comments Filter:

Real programmers don't bring brown-bag lunches. If the vending machine doesn't sell it, they don't eat it. Vending machines don't sell quiche.

Working...