I'm guessing its more the latter (send an error an then use the result to deduce... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		ChuckMcM on July 21, 2013 \| parent \| context \| favorite \| on: SIM Cards Have Finally Been Hacked, and the Flaw C... I'm guessing its more the latter (send an error an then use the result to deduce the key) That being the case, then someone duplicating the Raspberry Pi micro cell site could passively attack any phone that came within range. Makes you wonder if the FBI snooping cell tower already does this :-) Makes me wish I had the burner phone concession at DefCon.

tptacek on July 22, 2013 [–]

Yep, that appears to be the case:

http://www.theregister.co.uk/2013/07/22/mobile_gsm_sim_card_...

An attack similar in spirit to this breaks RADIUS.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact