Get Visible as low as $20/mo for 1 year!

Android phones running on AT&T and Verizon's LTE networks are vulnerable to attack

9
Alan Friedman
By
AT&T Verizon Android
Add as a preferred source on Google
Android phones running on AT&T and Verizon's LTE networks are vulnerable to attack
Thanks to an issue with the Session Initiation Protocol (SIP), employed for voice calls and instant messages over LTE, those rockin' an Android phone running on AT&T or Verizon, are vulnerable to being attacked. This is the conclusion that appears on an advisory posted by Carnegie Mellon University. The latter based its paper on a report by Korean academics and security researchers. AT&T and Verizon users could be the victims of eavesdropping and data spoofing. While T-Mobile customers were also mentioned as being vulnerable, the carrier says that it has taken care of the issue.

Part of the problem lies from Android's lack of an "appropriate permissions model" for LTE networks. A malicious app can be used to have your phone silently dial premium numbers (which could end up padding your bill by a large dollar amount), and a hacker can obtain bandwidth to make video calls with no extra charge. If the exploit isn't patched, attackers can use a peer-to-peer network to steal personal content from your phone. And by creating multiple SIP sessions simultaneously, a DOS attack can be made against a network.

Recommended For You
"We also propose immediate countermeasures that can be employed to alleviate the problems. However, we believe that the nature of the problem calls for a more comprehensive solution that eliminates the root causes at mobile devices, mobile platforms, and the core network."-ACM

"Current LTE networks rely on packet switching, rather than the circuit switching of previous generations of the mobile network. The use of packet switching and the IP protocol (particularly the SIP protocol) may allow for new types of attacks not possible on previous generation networks. Such types of attacks are well-known in the security community; for example, see previous attacks against Voice over IP (VoIP)."-CERT

Google plans on closing this hole with its November monthly security update for Nexus phones. AT&T and Verizon will have to fix the issue on their own networks. No word yet from the two largest U.S. carriers on how they intend to handle this problem.

source: ACM via CERT, ZDNet

Get Visible as low as $20/mo for 1 year. Limited time offer with code: FRESHSTART

$20 /mo
$25
$5 off (20%)
Offer Ends 6.1.2026 at 11.59pm ET. New members get $5/mo off the $25/mg Visible plan, $35/mo Visible+ plan, or $45/mo Visible+ Pro plan for the first 12 months. Promo code FRESHSTART required at checkout.
Buy at Visible
Google News Follow
Follow us on Google News
https://m-cdn.phonearena.com/images/users/39-200/Alan-F.webp
Alan Friedman Senior News Writer
Alan, an ardent smartphone enthusiast and a veteran writer at PhoneArena since 2009, has witnessed and chronicled the transformative years of mobile technology. Owning iconic phones from the original iPhone to the iPhone 15 Pro Max, he has seen smartphones evolve into a global phenomenon. Beyond smartphones, Alan has covered the emergence of tablets, smartwatches, and smart speakers.
Read the latest from Alan Friedman
Recommended For You
COMMENTS (9)
Latest Discussions
Galaxy S26+ Dial Pad
by readdriver • 2
Huawei Mate XT on T-Mobile Call echos
by ECPirate37 • 1
Dual Sim Whatsapp Iphone
by menooch18 • 2
Discover more from the community
Popular stories
Sony Xperia 1 VIII vs iPhone 17 Pro: Sample Photos Comparison
Sony Xperia 1 VIII vs iPhone 17 Pro: Sample Photos Comparison
T-Mobile learns the hard way not to make things difficult for consumers
T-Mobile learns the hard way not to make things difficult for consumers
FCC delivers a win for wireless subscribers that might make T-Mobile and Verizon uneasy
FCC delivers a win for wireless subscribers that might make T-Mobile and Verizon uneasy
T-Mobile 5G about to leap ahead of AT&T and Verizon again
T-Mobile 5G about to leap ahead of AT&T and Verizon again
Google Pixel 11: 6 features set to outshine the iPhone 17 and Galaxy S26
Google Pixel 11: 6 features set to outshine the iPhone 17 and Galaxy S26
T-Mobile walks back two changes customers and employees couldn't stand
T-Mobile walks back two changes customers and employees couldn't stand
Latest News
Apple Watch Series 11 becomes even more tempting after $100 price cut
Apple Watch Series 11 becomes even more tempting after $100 price cut
2nm chipsets will steal the show, but here's why we should pay attention to the 3nm Dimensity 8600
2nm chipsets will steal the show, but here's why we should pay attention to the 3nm Dimensity 8600
Compact size, hyper power: the Iniu P63 can charge a laptop!
Compact size, hyper power: the Iniu P63 can charge a laptop!
Adventurous Galaxy S26 series users will get their first taste of One UI 9 goodies 'this week'
Adventurous Galaxy S26 series users will get their first taste of One UI 9 goodies 'this week'
It’s not too late to score a Galaxy S26 with a tempting discount
It’s not too late to score a Galaxy S26 with a tempting discount
The Galaxy Tab S11 suddenly became even cheaper at a huge $250 off
The Galaxy Tab S11 suddenly became even cheaper at a huge $250 off