Security Flaws Already Found in 5G Technology

Security Flaws Already Found in 5G Technology

5G is the talk of the town, but is it free of security risks?

5G is shiny, new and the talk of the town when it comes to the next generation of cellular technology, and now that the first 5G-capable phones and networks are starting to roll out experts are sinking their teeth into researching for vulnerabilities and security risks. 

Security researchers at Purdue University and the University of Iowa have already poked holes in the months-old 5G technology, discovering three new vulnerabilities in 5G that can be used to track someone's location, intercept phone calls and send fraudulent text messages.

The most critical flaw is called Torpedo and it exploits a flaw in the paging system that notifies your phone of an incoming call or text. If an attacker starts to cancel several calls in a short period of time, they can send a paging message without alerting your phone to a call. Not only does this allow the attacker to track your phone's location and spoof paging messages like Amber and Emergency alerts, but this can also expose your phone to two other attacks: Piercer and IMSI-Cracking Attack. 

Piecers allows hackers to determine your phone's unique international mobile subscriber identity (IMSI) on a 4G network. IMSI-Cracking Attack allows hackers to brute-force encrypted IMSI numbers in both 4G and 5G networks. 

All four major carriers, AT&T, Verizon, T-Mobile and Sprint are all vulnerable to Torpedo and the worst part is: Torpedo can be carried out with radio equipment that costs as little as $200.

The security researchers reported the flaws to GSMA, the international body that represents the interests of mobile operators worldwide, but in the meantime users must wait for GSMA and companies to patch the flaws.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

New Products

  • Luma x20

    Luma x20

    Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.”

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.