The modern telecoms network is based on key principles that were introduced with SS7 (Signalling System Number 7) in the 1970s. However, it was not designed with a great regard for security, and so many vulnerabilities exist. Although later network architectures introduced more secure protocols, as well as IP-based operation, many vulnerabilities still exist in the overall end-to-end scheme.
In this course, we delve into the vulnerabilities that exist from the perspective of both the network operator and the end user. By examining these concerns, we aim to provide a better understanding of the potential risks associated with modern networks – and mitigation strategies.
These vulnerabilities include issues related to SCCP / Global Titles, Message Flooding, Network Impersonation / Traffic Injection, ISUP Layer Attacks, MAP Attacks, IMSI Catchers, USSD money transfer attacks, DoS, spoofing and scanning attacks, call interception and profile stealing.
- Access network abuse
- Circuit and non-circuit related signalling
- Information needed by an attacker
- Sources of vulnerabilities
- SS7 / ISUP security analysis and vulnerabilities
– Passive scanning, IAM DoS attacks, Malicious early call release, CLI spoofing
- MTP network management vulnerabilities
- Cellular network vulnerabilities
– Collecting Information, Acquiring a subscription profile, MO/MT intercept
– SMS and fraud
– USSD money transfer
- DoS towards the entire network
- Attack on network resources
- SIGTRAN vulnerabilities
- Bombing attack
Who would this course benefit?
Organisations seeking an introduction to network vulnerabilities from the perspective of both the network operator and the end user. This includes network operators, equipment manufacturers, security solution providers, those engaged in cyber security, regulatory bodies, and government agencies.
To attend this session you must have a MWC Las Vegas pass. Please click here for details on how you can register for a MWC Las Vegas pass.
Location, date and time
MWC Las Vegas, Las Vegas Convention Centre, West Hall, Room W312
26 Sept 2023, 2:00pm-5:00pm
There are currently no places available on this course
Tony is a Competency Development/Training Specialist at Wray Castle Telecoms Training. He has extensive experience in assessing, developing and delivering programmes for telecoms and adjacent industries, including tier 1 and 2 operators, vendors, service providers and regulators – covering a wide range of topics. He has worked with companies such as MTN, Vodafone, O2, BT/EE, GoogleX (Alphabet), HP, Ooredoo, Vodacom, SingTel, and Telekom Austria. He has been a speaker at large scale telecoms and media events globally.He now largely focuses on 5G and connected innovation and has trained many of the engineers at the forefront of 5G rollout in Europe and beyond.
As founding Managing Director of the Informa Telecoms Academy (2000-2017), he had full responsible for the training / competency development business within Informa Telecoms and Media (ITM). He also founded the Informa Innovation Academy as a complementary business unit in 2015. Tony’s own areas of expertise include technology, strategy, business transformation and connected innovation.
In his early career, Tony joined BT as an apprentice and local network planner, gaining sponsorship to Loughborough University of Technology to study for a BSc in Electronics and Physics. He is a Member of the Institute of Leadership and Management, and holds several training and leadership qualifications