These attacks use a device known as a “stingray” that mimics cell towers
The new Android 16 update has a feature that will warn you when someone is using a fake and insecure network for malicious purposes.
The attack utilizes a device known as a “stingray.” The attacker sets up the device near a target that they want to observe, and mimics a legitimate cell tower. The stingray then tricks mobile devices into connecting to the tower, allowing the collection of unique identifiers (like IMEI) and even forcing the device onto an older, more insecure protocol. The protocol enables the attackers to intercept phone calls and unencrypted text messages.
The stingray is notably used by law enforcement, but can also be acquired by individuals with malicious intent. While there is an argument that they are helpful for surveilling criminals in an investigation, they have a high potential for abuse. As a result, Google is developing solutions to prevent devices from transmitting communications over insecure cellular networks.
Google has been working on blocking these Stingray devices for a while. With Android 15, Google added support for notifying the OS when the network requests a device’s unique identifiers or tries to force a new ciphering algorithm. These directly counter the methods used by commercial stingrays and block them. Notifying the user about these requests helps people become aware of potential threats and protects them from surveillance.
The only problem, however, is that the only widely available feature is the ability to disable 2G connections. As Android Authority points out, the issue with this approach is that implementing these protections necessitates changes to the phone’s modem driver. The feature that was mentioned earlier requires a modem that supports version 3.0 of Android’s IRadio hardware abstraction layer (HAL).
Source: Android Authority
MobileSyrup may earn a commission from purchases made via our links, which helps fund the journalism we provide free on our website. These links do not influence our editorial content. Support us here.
