2023-10-13, 17:30–17:50, Track #2
In this talk the author proposes a novel method for intercepting phone calls over PSTN, including mobile networks.
We'll briefly each discuss the necessary components of the attack, including Caller ID spoofing, SS7, call diverts, and social engineering, and then join the all together to form the novel attack method.
Two separate methods will be proposed.
The author will provide a pre-recorded demo of each attack.
- PSTN / MN / CLIP / CNAM
- SS7 features and attacks
- Relevant social engineering techniques
- Attack 1: Simultaneous ring attack
- Attack 2: Diversion attack
- Tactic 1: Interception of phone calls
- Tactic 2: Alteration of phone calls (content)
- Tactic 2: Alteration of phone calls (metadata)
- Proposed solutions
Note that the presentation includes pre-recorded demos as it's ill-advised to do this live in a conference for legal reasons.