EvilZone

Hacking and Security => Hacking and Security => : 2d8 November 21, 2014, 11:03:36 PM

: Bootkit via SMS
: 2d8 November 21, 2014, 11:03:36 PM

Saw video demo (https://www.youtube.com/watch?v=6_0tcf-f_II) on youtube. (seclist link (http://seclists.org/fulldisclosure/2014/Nov/53))
What do you think? Is it just PoC or may have real life implementation?

: Re: Bootkit via SMS
: G0thz1ll478 November 28, 2014, 10:57:28 PM

I'm sure it has potential, there was an article on http://thehackernews.com/2013/07/sim-card-cloning-hack-affect-750.html (http://thehackernews.com/2013/07/sim-card-cloning-hack-affect-750.html) where a guy managed to prove SIM card exploitation via sms and all the major networks simply ignored him, which I found shocking, though he revealed no source code (And he hopes its been fixed) the description on the technique and the glaring security hole should have been a wake up call at the blackhat security conference, but have you seen it on MSM? Me neither.

: Re: Bootkit via SMS
: immortalghost November 29, 2014, 05:21:12 AM

The best measure I've seen when people ignore you trying to help them with bugs and holes in security is releasing it to the internet.

Dangerous but effective