It seems that the FCC might be fixing the vulnerabilities in SS7 and the Diameter protocol:

On March 27 the commission asked telecommunications providers to weigh in and detail what they are doing to prevent SS7 and Diameter vulnerabilities from being misused to track consumers’ locations.

The FCC has also asked carriers to detail any exploits of the protocols since 2018. The regulator wants to know the date(s) of the incident(s), what happened, which vulnerabilities were exploited and with which techniques, where the location tracking occurred, and ­ if known ­ the attacker’s identity.

This time frame is significant because in 2018, the Communications Security, Reliability, and Interoperability Council (CSRIC), a federal advisory committee to the FCC, issued several security best practices to prevent network intrusions and unauthorized location tracking.

I have written about this over the past decade.

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Ukrainian Police Arrest Suspected Brute-Force Account Hijackers

March 20, 2024 0 Comments 0 tags

Police in Kharkiv arrest three men suspected of hacking 100 million Instagram and email accounts

New AcidPour Wiper Targeting Linux Devices Spotted in Ukraine

March 22, 2024 0 Comments 0 tags

SentinelLabs researchers identified the malware as a new variant of AcidRain, which shut down thousands of Viasat satellites in Ukraine and Western Europe in 2022

Fake Tokens Exploit BRICS Investment Hype

February 19, 2024 0 Comments 0 tags

Resecurity said bad actors exploited geopolitical narratives, spreading misinformation