Yunusov Timur

Positive Technologies (Russia)

Paper Title

How to build Big Brother: Critical Vulnerabilities in 3G/4G Modems


This research was born from the presentation "#root via SMS" and offer a summary of the analysis of dozens of vulnerable 3G modems and routers provided by operators and manufacturers around the world. As a result of the research it was found that the most of the modems can be turned into tracking devices remotely due to various vulnerabilities and firmware update processes weaknesses.

The presentation will detail the process of infection: from firmwares Reverse Engineering to ROM backdooring.

And will be discussed the complete cycle of subscribers surveillance: from SMS and Internet traffic interception and the victim's geolocation disclosure to the remote host infection. And smth more ;)

Speaker Bio

Timur Yunusov, Senior Expert of Banking systems security and author of multiple researches in field of Web application security including “Bruteforce of PHPSESSID”, rated in Top Ten Web Hacking Techniques of 2012 by WhiteHat Security and “XML Out-Of-Band” showed at the NoSuchCon 2013. Professional web applications security researcher. Previously spoken at BlackHat EU 2013, NoSuchCon 2013, ZeroNights and Posive Hack Days.

Copyright © 2019-20 | Nullcon India | International Security Conference | All Rights Reserved