AdaptiveMobile finds evidence of damaging SS7 attacks on mobile operators

SS7 network abuse seen in every continent, including the location tracking of mobile subscribers, according to AdaptiveMobile, which will present the results of its research on 20 October 2015

AdaptiveMobile finds evidence of damaging SS7 attacks on mobile operators

Mobile network security provider AdaptiveMobile announced today (15 October 2015) that it has evidence of the damage SS7 attacks are causing operator networks around the globe.

AdaptiveMobile plans to present the results of new research at a webinar on 20 October 2015, when Cathal Mc Daid, Head of AdaptiveMobile’s Threat Intelligence Unit will share evidence of exploitation of an individual’s privacy including location tracking and fraud focusing on Europe, Middle East and the Americas, and will analyse recent call interception attacks worldwide.

SS7 (Signalling System 7) is a set of signalling protocols in telecom network technology, which are used by hundreds of cellular companies to allow them to operate and communicate with each other; it is the computer protocol used by telecom nodes within cellular networks to provide mobility control, network registration, call and text setup, etc.

“We knew these vulnerabilities were possible, and through the work of our world-leading Threat Intelligence Unit, we now have proof of exploitations happening all over the world,” said Brian Collins, chief executive officer of AdaptiveMobile. “Operator networks need to understand the level of threat they are facing so they can remain the trusted provider to their customers.”

Since launching its SS7 Protection in February 2015, the company has partnered with operator networks worldwide to analyse and secure the SS7 traffic travelling through their networks.

AdaptiveMobile argues that there are consistent levels of danger within operator networks across the world and unauthorised access to the SS7 network can cause significant financial and reputational damage to the operator community. Fraudulent roaming configurations can cost operators millions of dollars without any opportunity to recapture this revenue.

Without appropriate preventions put into place, operators are allowing adversaries to know exactly where a subscriber is at any given moment and to intercept and reroute device communications, listening to every call and reading every text message. The financial and reputational risks that operators are putting themselves under is unnecessary and needs to be addressed, the company asserts.

“Through our analysis of SS7 traffic we’ve detected numerous types of SS7 requests and responses being received and sent from one operator network to another,” said Cathal Mc Daid, Head of AdaptiveMobile’s Threat Intelligence Unit.

“From the Americas to MENA, Europe to APAC, the operator networks analysed have all shown evidence of suspicious SS7 activity. We’re working with operators to secure their networks as none are exempt from these types of attacks.”

AdaptiveMobile security products are deployed in more than 75 operator networks worldwide, covering one-fifth of the world’s subscribers and witnessing in excess of 30 billion mobile events every day from across the globe.

Approaching the SS7 vulnerabilities with a tiered approach, the company uses a comprehensive SS7 Firewall, advanced reporting and the knowledge of its industry-leading Threat Intelligence Unit to identify and combat against emerging threats.

Mc Daid will present his findings from the company’s Threat Intelligence Unit through a global webinar on 20 October. To register for AdaptiveMobile’s webinar, visit:

See also:
Vulnerability of LTE networks for mission critical use

Meeting the security threats in LTE

Leave a Comment