What is SS7 flaw?
The vulnerability lies in Signalling System 7, or SS7, the technology used by telecom operators, on which the highly secure messaging system and telephone calls rely. SS7 is a set of telephony signaling protocols developed in 1975, which is used to set up and tear down most of the world’s public switched telephone network (PSTN) telephone calls. It also performs number translation, local number portability, prepaid billing, Short Message Service (SMS), and other mass market services. So using this hackers can gain access via phone number and email ID easily within minutes. They hack gmail Using SS7 flaw..Hackers send OTP for victim cellphone and they bypass it! Hence they have gmail ID. And then they move towards coin base and take the bitcoin wallet using hacked email ID.
“This hack would work for any resource – real currency or virtual currency – that uses SMS for password recovery,” said Positive researcher Dmitry Kurbatov told Forbes. “This is a vulnerability in mobile networks, which ultimately means it is an issue for everyone, especially services relying on the mobile network to send security codes.”
