36 vulnerabilities in LTE 4G standard could enable data interception


Researchers have discovered a collection of flaws in the Long-Term Evolution (LTE) standard, which could allow an attacker to send spoof messages and intercept data traffic.

A team with the Korea Advanced Institute of Science and Technology Constitution (KAIST) have discovered 51 vulnerabilities with the 4G standard, including 15 known issues and 36 previously undiscovered flaws.

They discovered this set of flaws using a code-testing technique known as ‘fuzzing’. The KAIST researchers used a tool dubbed ‘LTEFuzz’ to feed large amounts of random data into identified processes to test them for potential anomalies.

Read more…
Source: ITPro