Attacks that crash most older cellphones are frequently compounded by carrier networks that send booby-trapped text messages to the target handset over and over. In other cases, they're aided by a "watchdog" feature embedded in the phone, which takes it offline after receiving just three of the malformed messages.
"With this bug, you can basically shut down a phone with one SMS and let the network do the retransmission all the time," Collin Mulliner, a Ph.D. candidate at the Berlin Institute of Technology, told The Reg recently. "For very cheap, you can have the network attack the phone for you."
The so-called SMS of death attacks were unveiled late last year at a hacker conference in Berlin. They use special binary characters and overflowed headers to temporarily crash most older models made by manufacturers including Nokia, Samsung, Sony Ericsson, LG, Motorola, and Micromax. Carrier networks often aggravate the attacks by bombarding the target with the same malicious message, making them an inexpensive way to take a phone completely offline.
For more on this story, visit The Register online at:
Copyright 2011 WBRC. All rights reserved.