Skip to main content

Here is how to hack WhatsApp, Telegram or Facebook using SS7 flaw

Here is how to hack WhatsApp, Telegram or Facebook using SS7 flaw


Here is how to hack WhatsApp, Telegram or Facebook using SS7 flaw


Earlier we had reported how easy it is for hackers and cyber criminals to hack WhatsApp and Telegramand view victims messages using the SS7 flawdespite both having strong end-to-end encryption. Now it seems that hackers can exploit the SS7 flaweven to hack into your Facebook. Worryingly, the hackers only need you mobile number to hack your Facebook account.
Researchers have proven just that by taking control of a Facebook account with only a phone number and some hacking skills to exploit the SS7 network, a core piece of telecoms infrastructure shown to be vulnerable repeatedly over the last half decade.
The vulnerability lies in Signalling System 7, or SS7, the technology used by telecom operators, on which the highly secure messaging system and telephone calls rely. SS7 is a set of telephony signalling protocols developed in 1975, which is used to set up and tear down most of the world’s public switched telephone network (PSTN) telephone calls. It also performs number translation, local number portability, prepaid billing, Short Message Service (SMS), and other mass market services.
In addition, eavesdropping is possible by using the protocol to forward calls and also facilitate decryption by requesting that each caller’s carrier release a temporary encryption key to unlock the communication after it has been recorded. Researchers created a tool (SnoopSnitch) which can warn when certain SS7 attacks occur against a phone and detect IMSI-catchers.

Here is how the Facebook hack works

The hackers just have to the network by exploiting the SS7 flaw to spoof the victim. Once the network is fooled, the hacker has to use the Facebook’s “Forgot Account?” link on the Facebook.com homepage.
The hacker than has to fool Facebook into believe he is the real owner instead of the victim. When asked for an email address or phone number linked to the target account, the hacker provides the legitimate number. When Facebook sends a one-time passcode, the network which has already been spoofed by the hacker, send the code to their phone or PC.
One the hacker has access to to the passcode, the victim’s Facebook account is as good as gone. Researchers have detailed the entire Facebook hacking process in the video below :

Why is SS7 not patched by the networks

Despite of the knowledge that the SS7 is vulnerable to hacking since 2008, why are different networks not patching it? The answer lies in the politics and global dynamics. Many governments would prefer to keep the flaw unpatched so that they can spy on dissidents, political activists and terrorists. The patch for the SS7 flaw has to be initiated in each and every network on Earth and this is pretty difficult considering the geographies. In 2014, the media reported a protocol vulnerability of SS7 by which both government agencies and non-state actors can track the movements of cell phone users from virtually anywhere in the world with a success rate of approximately 70%.
It would take a 9/11 type attack using the SS7 flaw to make the world governments understand the severity of SS7 flaw to patch it. Till then, if your WhatsApp, Telegram or Facebook is hacked, you know who to blame.
NOTE - For Education Purpose 

Labels

Labels:

Comments

Post a Comment

Popular posts from this blog

[ROM] XTREME OS V5 FOR MT6572

Most Features OF This Rom Rooted Deodexed Debloated init.d Enabled X launcher  battery saver tweeks added 13mp camera mod added performance boosting scripts are added dolby audio inbuilt themed x audio player Tested Games working smoothly 90-100%: Dead trigger=High Graphic Setting Asphalt8=Mid Graphics Setting NBA2k14 Cytus Real Boxing Modern Combat 4 .................... .................... .................... ............... .................... ................ Download Our App For Help Click Here Download ............... .................... ................ .................... .................... .................... How to flash this ROM 1. Go to Recovery Mode CWM/CTR (Carliv Touch Recovery) 2. Wipe>Wipe Cache> Wipe Dalvic Cache 3. Mount System and data 4. Install Zip>Choose Zip from SD card>Flash Screenshot
Post a Comment
Read more

WIBR+ WiFi BruteForce Hack Pro v2.2.0 APK is Here ! [Latest] [Eng-Ver]

WIBR+ WiFi BruteForce Hack Pro v2.2.0 APK is Here ! [Latest] [Eng-Ver] WIBR+ WIBR+ WiFi BruteForce Hack Pro WIBR is a handy application for testing of security of the WPA/WPA2 PSK WiFi networks. This application is NOT FAKE, it really works and it is possible to access the WiFi network if it uses weak password. This app supports queueing, custom dictionaries, bruteforce generator and advanced monitoring! Read whole description before buying and please READ FAQ at end of this page. Features Network Tools Hacking Data Privacy Wireless Data Monitors The application supports two types of Test Dictionary test – it tries passwords from predefined list one by one. Please don’t be disappointed if the password will not be found, it simply means that it was not in the dictionary. However, if somebody set his key to “12345678” or “password” it will be detected. This version supports importing of your own dictionaries, so you are no longer limited by pre-installed dictionaries! Bruteforce test – y...
Post a Comment
Read more

[ROM] Flatro Style For MT6572

Most Feature of this ROM Lollipop UI Material Design    Super Ram Management  Dolby Digital Plus Deodexed Pre-rooted Fast performance Better gaming Experience  Improvement in build.prop Fixed SystemUI New Iconpack Rounded Corner Relayout View Pager Relayout Custom Drawer Ram Progress Bar in Recent Contextual Background App Circle Side Bar Tinted Statusbar Carbon Traffic Potato Clock Tested Games working smoothly 90-100% Dead trigger=High Graphic Setting Asphalt8=Mid Graphics Setting NBA2k14 Cytus Real Boxing Modern Combat 4 INSTRUCTIONS: 1.GO TO CWM/TWRP/CTR 2.WIPE SYSTEM/CACHE/DATA/DALVIK 3.SELECT "INSTALL ZIP FROM SDCARD" 4.SELECT "CHOOSE ZIP FROM SDCARD" 5.SELECT THE ROM.ZIP AND "yes" 6.REBOOT AND ENJOY .................... .................... .................... ............... .................... ............... Show Me Some of your love  Download Our Blog App For Help Click Here Download ROM ............... .................... ................ .....
Post a Comment
Read more