AT&T and Verizon’s implementations of LTE are said to leave device owners open overcharging, eavesdropping and data spoofing by hackers.
T-Mobile customers were affected, but spokespeople have since confirmed the issue is resolved for their customers. Apple products are also unaffected b the issue. The risk is said to come from improper permissions models for LTE networks – Verizon and AT&T’s software is said to be the most vulnerable.
The advisory, posted by Carnegie Mellon University’s public vulnerability database (CERT) on Friday, was based on a paper published by Korean academics and security researchers, which call for a “comprehensive solution that eliminates the root causes at mobile devices, mobile platforms, and the core network.”
view full story here
ORIGINAL SOURCE: Zack Whittaker, ZDNet