Feeds

Mobiles susceptible to radio hacks

Attack could command phones to record and transmit your voice

High performance access to file storage

Podcast Deep inside your mobe is the “baseband chipset”, a slab of silicon that handles all radio communications.

Baseband systems have plenty of processing grunt and, according to renowned Jailbreaker Eric "Musclenerd" McDonald, are deeply integrated with the rest of a mobe’s hardware. That makes them a great place to run a virus, which could be uploaded through a hacked cell.

The good news is that this attack is largely theoretical for now: to pull it off you would need to follow your target around and aim a dedicated cell at their phone.

The bad news is that the baseband chipset is just the kind of thing you’d attack if you wanted to run the extensive surveillance needed to sustain a police state.

In this podcast, McDonald explains just how the baseband chipset could be exploited and how to do it for the Qualcomm chipsets used in the iPhone.

Eric Musclenerd McDonald on Risky.biz

You can also download the podcast here. ®

Patrick Gray's Risky Business podcast brought Reg readers special coverage of the Ruxcon Breakpoint conference.

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
OpenSSL Heartbleed: Bloody nose for open-source bleeding hearts
Bloke behind the cockup says not enough people are helping crucial crypto project
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
Experian subsidiary faces MEGA-PROBE for 'selling consumer data to fraudster'
US attorneys general roll up sleeves, snap on gloves
Oz bank in comedy Heartbleed blog FAIL
Bank: 'We are now safely patched.' Customers: 'You were using OpenSSL?'
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.