Mobile network flaws could open Bitcoin wallets to hackers

2 Comments

Bitcoin phishing theft

An architecture flaw in mobile networks could allow hackers to intercept SMS one-time passwords and access Bitcoin wallets.

The vulnerability uncovered by enterprise security specialist Positive Technologies means that with just a person's first name, last name, and phone number, researchers were able learn the email address linked to the wallet, obtain control over it, and gain access to the wallet itself including withdrawing funds.

The attack is made possible due to a flaw in the Signaling System No 7 (SS7) protocol used by most of the world's telephone networks. SS7 was developed in 1975 and has made the news before when vulnerabilities allowing cell phone users to be secretly tracked were uncovered in 2008 and in 2014.

Positive Technologies is one of the first companies to pay attention to SS7 security flaws relating to banking systems. Attacks exploiting these vulnerabilities can be launched from anywhere, which is a great benefit to attackers. In spring 2017, the first cases of attacks exploiting SS7 were registered in Germany leading to money being stolen from bank accounts. Cyber criminals intercepted texts with online banking authentication codes sent to customers of Telefonica Germany (O2), a German mobile operator, and used them to carry out unauthorized transactions.

"We work in close coordination with telecom operators to discover threats before hackers do, in order to protect subscribers," says Dmitry Kurbatov, head of telecommunications security department at Positive Technologies. "Exploiting SS7 specific features is one of several existing ways to intercept SMS. Unfortunately, it is still impossible to opt out of using SMS for sending one-time passwords. It is the most universal and convenient two-factor authentication technology. All telecom operators should analyze vulnerabilities and systematically improve the subscriber security level."

You can find out more about the attack method in the video below.

Image credit: aleximx / depositphotos.com

2 Comments

2 Responses to Mobile network flaws could open Bitcoin wallets to hackers

Got News? Contact Us

Recent Headlines

8 steps to secure your business during employee offboarding

Microsoft is modernizing the workplace -- but where does Copilot fit in?

The AI advantage: Navigating the future of procurement with Generative AI

Plugable launches new premium cables

Election year gives rise to global supply chain cyberthreats

Surfshark finally launches VPN app for Apple TV

Over half of CISOs expect frozen or lower budgets in 2024

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

60 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

17 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

17 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

16 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

15 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

EndeavourOS ARM discontinued: A huge loss for the Linux community

9 Comments

Install the KB5035942 update for Windows 11 to gain all of the Moment 5 features right now

8 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.