Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CAPEC-609:Cellular Traffic Intercept
Attack Pattern ID:609
Version:v3.9
Attack Pattern Name:Cellular Traffic Intercept
Abstraction:Detailed
Status:Draft
Likelihood of Attack:
Typical Severity:Low
DetailsContent HistoryRelated WeaknessesReports
▼Description
Cellular traffic for voice and data from mobile devices and retransmission devices can be intercepted via numerous methods. Malicious actors can deploy their own cellular tower equipment and intercept cellular traffic surreptitiously. Additionally, government agencies of adversaries and malicious actors can intercept cellular traffic via the telecommunications backbone over which mobile traffic is transmitted.
▼Extended Description
▼Alternate Terms
▼Relationships
NatureTypeIDName
ChildOfS157Sniffing Attacks
Nature: ChildOf
Type: Standard
ID: 157
Name: Sniffing Attacks
▼Execution Flow
▼Prerequisites
None
▼Skills Required
Medium

Adversaries can purchase hardware and software solutions, or create their own solutions, to capture/intercept cellular radio traffic. The cost of a basic Base Transceiver Station (BTS) to broadcast to local mobile cellular radios in mobile devices has dropped to very affordable costs. The ability of commercial cellular providers to monitor for "rogue" BTS stations is poor in many areas and it is assumed that "rogue" BTS stations exist in urban areas.

▼Resources Required
▼Indicators
▼Consequences
ScopeLikelihoodImpactNote
ConfidentialityN/ARead DataCapture all cellular and RF traffic from mobile and retransmission devices. Move bulk traffic capture to storage area for cryptanalysis of encrypted traffic, and telemetry analysis of non-encrypted data. (packet headers, cellular power data, signal strength, etc.)
Scope: Confidentiality
Likelihood: N/A
Impact: Read Data
Note: Capture all cellular and RF traffic from mobile and retransmission devices. Move bulk traffic capture to storage area for cryptanalysis of encrypted traffic, and telemetry analysis of non-encrypted data. (packet headers, cellular power data, signal strength, etc.)
▼Mitigations
Encryption of all data packets emanating from the smartphone to a retransmission device via two encrypted tunnels with Suite B cryptography, all the way to the VPN gateway at the datacenter.
▼Example Instances
▼Related Weaknesses
IDName
CWE-311Missing Encryption of Sensitive Data
ID: CWE-311
Name: Missing Encryption of Sensitive Data
▼Taxonomy Mappings
Taxonomy NameEntry IDEntry Name
ATTACK1111Multi-Factor Authentication Interception
Taxonomy Name: ATTACK
Entry ID: 1111
Entry Name: Multi-Factor Authentication Interception
▼Notes
▼References
Details not found