Using Client Provisioning to Intercept a Victim's Mobile Traffic

Channel:

Check Point Software

Subscribers:

79,900

Published on September 5, 2019 3:11:22 PM ● Video Link: https://www.youtube.com/watch?v=3G5NXGMLKvE

Duration: 1:37

14,514 views

102

Check Point Research recently discovered an attack vector for redirecting a victim's mobile traffic to an attacker-controlled server. For more information visit http://research.checkpoint.com/advanced-sms-phishing-attacks-against-modern-android-based-smartphones.

This attack vector relies on a process called over-the-air client provisioning, which is normally used by cellular network operators to deploy network-specific settings to a new phone joining their network.

We discovered how, via a client provisioning message, a remote agent can trick a user into accepting new phone settings that route all his mobile traffic through a malicious proxy. To demonstrate this attack, in the video we are redirecting a victim to a fake social network login page and stealing his credentials just by sending him a rogue client provisioning message.

Other Videos By Check Point Software

2019-09-30	CheckMates “Ask Us Anything” with Check Point CEO Gil Shwed and VP of Products Dr. Dorit Dor \| Pt. 2
2019-09-23	Avianca Airlines Takes Off to the Cloud Securely with Check Point
2019-09-20	CheckMates “Ask Us Anything” with Check Point CEO Gil Shwed and VP of Products Dr. Dorit Dor \| Pt. 1
2019-09-18	Desert Research Institute Elevates Data Security With Check Point R80 and SandBlast Network
2019-09-18	How to Transform Your Branch Office Connectivity Through Cloud-Delivered Security Services
2019-09-17	Protecting Branch Offices with Cloud-Delivered Security \| Check Point's CloudGuard Connect
2019-09-11	Stefanini Prevents Zero-Day Attacks with Check Point R80.10 Solutions
2019-09-11	Webinar \| How Application Security Provider, Veracode, Boosted Cloud Visibility and Compliance
2019-09-11	BlueKeep Security Vulnerability Escalates to Critical Cyber Threat
2019-09-06	Welcome to the Future of Cyber Security \| Check Point Software
2019-09-05	Using Client Provisioning to Intercept a Victim's Mobile Traffic
2019-09-03	Check Point CloudGuard IaaS - Transit Gateway Inbound ASG \| Part 3/3
2019-09-03	Check Point CloudGuard IaaS - Transit Gateway Inbound ASG \| Part 2/3
2019-09-03	Check Point CloudGuard IaaS - Transit Gateway Inbound ASG \| Part 1/3
2019-09-03	Check Point CloudGuard IaaS - Transit Gateway Outbound ASG
2019-09-03	Check Point CloudGuard IaaS - Setting up the AWS Transit Gateway
2019-09-03	Check Point CloudGuard IaaS - Management Server Advanced Configuration
2019-09-03	Check Point CloudGuard IaaS - Install Management Server
2019-09-03	Check Point CloudGuard Network Security - AWS Transit Gateway Introduction
2019-09-03	Best Practices for Architecting Hybrid Cloud Security \| VMworld 2019 US
2019-09-03	Prevent Unknown Cyber Threats with Zero-Day Protection

Tags:

Check Point Research

Mobile Traffic

malicious proxy

mobile security

cyber vulnerabilities

cyber vulnerability management

cyber attack research

Channel	Latest
FUNDOse EnT	6 hours ago
Chris Harkin	7 hours ago
Marvin en vrac - League Of Legends	7 hours ago
PlayProof	7 hours ago
Crashout MMA	7 hours ago
RemovedEDM - Audiovisual Archives	7 hours ago
Girl Gamer DON	7 hours ago
Tibo InShape	7 hours ago
Fanum Live	7 hours ago
EvanBreaksGames VODs	8 hours ago
CM951	8 hours ago
HELLOO	8 hours ago
Binez 2 Diligent	8 hours ago
Victor Caruso	8 hours ago
Alert Gaming	8 hours ago
It Is WHAT It Is	8 hours ago
곰슬래쉬	8 hours ago
JONIS BETHESDIANO	8 hours ago
TommyKayVODs	9 hours ago
Aaron M	9 hours ago
G-Man's Gaming	9 hours ago
BANG JHON	9 hours ago
Planco & Chill	9 hours ago
Sakurubii	9 hours ago
EB The Original Master	9 hours ago