We Don’t Know Why Criminals Need Our Outdated Telephones


The thriller why cybercriminals need a discontinued Nokia cellphone isn’t getting any clearer.

Hackers have been providing as much as €25,000 (US$32,413) in undergrounds boards for Nokia 1100 telephones made within the firm’s former manufacturing facility in Bochum, Germany. The cellphone can allegedly be hacked in order to facilitate unlawful on-line banking transfers, in line with the Dutch firm Ultrascan Superior International Investigations.

Nokia mentioned on Tuesday it’s not conscious that resale costs for a cellphone that retailed for lower than €100 when it debuted in 2003 have risen so excessive. Additional, Nokia maintains the cellphone’s software program isn’t flawed.

“We now have not recognized any cellphone software program drawback that might permit alleged use instances,” the corporate mentioned in an e-mailed assertion.

The 1100 can apparently be reprogrammed to make use of another person’s cellphone quantity, which might additionally let the machine obtain textual content messages. That functionality opens up a possibility for on-line banking fraud.

In international locations comparable to Germany, banks ship an mTAN (cellular Transaction Authentication Quantity) to an individual’s cell phone that have to be entered right into a Internet-based kind with a purpose to, for instance, switch cash into one other account. A TAN can solely be used as soon as, a safety function often known as a one-time passcode.

Criminals have confirmed adept at acquiring peoples’ person names and logins for on-line financial institution accounts, both by way of tricking folks into visiting look-alike financial institution Websites, by way of intelligent e-mail messages or just hacking PCs.

European banks sometimes situation clients a listing of TANs, however phishers tricked folks into revealing these. Deutsche Postbank used to just accept any TAN from the record to finish a transaction. Then the financial institution moved to requesting particular TANs from the record. After persevering with fraud, it in 2005 determined to expanded using mTANs.

“The mTAN is legitimate just for the requested switch and just for a brief interval,” in line with the financial institution’s Web page. “It thus has no worth for a fraudster.”

That’s, except the hacker may additionally obtain the mTAN, which Nokia 1100 hack allegedly permits.

Nokia mentioned it doesn’t know of an 1100 software program drawback that might permit name spoofing. The corporate mentioned {that a} cellphone’s SIM (Subscriber Identification Module) card — which holds the machine’s cellphone quantity — has safety mechanisms which are separate from the cellphone itself.

Nokia mentioned it’s conscious of economic companies that declare to supply caller identification or phone-number spoofing companies, however in these instances the service supplier acts as a proxy between the caller and the recipient, Nokia mentioned.

However it’s attainable to have a number of telephones operating on a service supplier’s community that use the identical cellphone quantity, mentioned Sean Sullivan, a safety advisor with the safety vendor F-Safe in Finland. Often, the final cellphone that used the community would be the one which receives inbound messages, he mentioned.

“So if this specific Nokia 1100 will be modified to spoof the victims cellphone quantity, it needs to be attainable to develop into the first handset — a minimum of lengthy sufficient to obtain the TAN,” Smith mentioned.

Technical particulars on how the 1100 is being modified are nonetheless unknown, mentioned Frank Engelsman of Ultrascan. Nevertheless, a girl in Finland contacted his firm on Monday after seeing a information story and supplied to ship her Bochum-made Nokia 1100. When it arrives, the cellphone might be examined and examined to see if the TAN interception will be replicated, Engelsman mentioned.

In the meantime, a Dutch know-how web site, portablegear.nl, wrote that it positioned a faux commercial for the actual Nokia 1100 on a web based market. Folks supplied as a lot as €500, providing to right away come decide up the machine.

Nokia produced greater than 200 million units within the 1100 mannequin household. The corporate mentioned it doesn’t disclosure figures comparable to what number of 1100s had been made in Bochum.


Supply hyperlink