2 days ago
Do Not Connect Your Phone To These Networks, Warns Google
Doi not make these dangerous connections.
A timely caution for smartphone users this week, with the police warning criminals can push malicious SMS texts directly onto their phones, bypassing mobile networks. This is why Google warns all smartphone users to change their networks settings.
The threat comes from so-called SMS blasters, which trick phones into making a direct connection with an attacker's radio device, thinking it's a real network access point.
The texts themselves are no different to the ones coming via normal networks — but for an attacker there's no need to have a list of target numbers, they can select a target location instead. This means they can prioritize areas with richer pickings.
Police in the U.K, when one SMS-blasting cyber criminal was jailed this week, warn that criminals will try "to bypass fraud prevention measures designed to protect consumers [to]
Google warns that 'this method to inject messages entirely bypasses the carrier network, thus bypassing all the sophisticated network-based anti-spam and anti-fraud filters.' The company has now seen this 'SMS Blaster fraud' in multiple countries.
Disable 2G on your phone
Google also says that increasing evidence 'of the exploitation of weaknesses in cellular communication standards leveraging cell-site simulators' means users need to act.
The solution is to disable 2G networks on your phone. This is still dependent on manufacturer and model, but you can search for 2G or phone or cellular settings to check if it's available. 2G is woefully insecure compared to more recent networks, particularly 5G but also 4G (LTE) and even 3G.
This is why Google and Samsung are upgrading devices to prevent Android phones connecting to these less secure networks. 2G is also disabled by default if Android 16's new Advanced Protection Mode is enabled. The police advice is to disable 2G.
Remember, even in locations where 2G has been sunsetted, the phone will still connect to a fake cell access point it it has 2G enabled. This is a device level problem.
As a rarity, this is one security area where Androids beat iPhones. You cannot currently disable 2G on an Apple device unless you use Apple's Lockdown Mode sledgehammer. But you can filter texts from unknown numbers and treat them all with suspicion. And the advice not to click links is the same however a text was sent to your phone.
