Jamming Cellphones with Text Messages 276
Steve writes "Some Penn State professors and students have published a way to jam cellular voice service with simple text messages. From the article: 'Because text messages are transmitted on the same signal that is used to set up voice calls, just 165 messages a second is enough to disrupt all cellphones in Manhattan.' Cellular providers, of course, fired back, one stating that it 'constantly and aggressively monitors potential threats to the integrity and security of its network.'"
One problem. (Score:4, Interesting)
Re:One problem. (Score:3, Informative)
Re:One problem. (Score:2, Informative)
Re:One problem. (Score:2, Informative)
Re:One problem. (Score:2, Informative)
While it is technically feasible that this could be done, implementing an anti-spam filter, or similar, on the mail address in question. While everything is still going through a server (and I'm sure similar solutions can/will exist for SMS), whether it's em
Re:One problem. (Score:5, Funny)
Ch-rist! For that price, I could have a dozen women heavy breathing on my cellphone, telling me how much they love it when I do that to them!
Re:One problem. (Score:3, Insightful)
Re:One problem. (Score:2)
Text is low priority raffic (Score:5, Interesting)
The reason for this prioritisation is that delaying isochronous (eg. voice) data makes it unusable, but backing up text is OK. If you try jamming with text all you'll end up with is a load of backed up text.
What? (Score:5, Informative)
Do you have a source?
Re:What? (Score:4, Informative)
One day while I was sending text messages I was getting a surprisingly high percentage of failed sends, so I called their technical helpline, gave my postal code etc and was told the base station nearest to me was undergoing maintanence and thus would have a reduced capacity for around 24 hours, and because voice traffic had priority over SMS/data there may be intermittent issues.
Re:What? (Score:3, Informative)
Re:What? (Score:2)
Re:What? (Score:2)
Re:What? (Score:2, Informative)
The system works even when cellular calls do not because text messages are small packets of data that are easy to send, and because the companies transmit them on the high-priority channel whose main purpose is to set up cellphone calls.
Do you have a source?
Bad reporting, Yes cell phones use SMTP to contact towers, and verify the accessability of circuits, and those SMTP packets are highly flaged, and YES text messages are SMTP packets (same as I
Re:What? (Score:3, Insightful)
Yes cell phones use SMTP to contact towers, and verify the accessability of circuits, and those SMTP packets are highly flaged, and YES text messages are SMTP packets (same as ICQ and e-mail, AIM, MSN etc etc)
Arrgh! SMS, no SMTP! ICQ uses udp or possibly a tcp connection, not SMTP. Are you really that clueless or just trolling?
Re:Text is low priority raffic (Score:3, Informative)
Re:One problem. (Score:2, Insightful)
Not with Verizon (Score:3, Informative)
Verizon kicks ass.
-everphilski-
VERY TYPICAL OF GSM (Score:5, Interesting)
Clearly the people that designed the air interface made the same poor architectural decision.
Re:One problem. (Score:3, Interesting)
Magic Link (Score:3, Informative)
http://www.nytimes.com/2005/10/05/technology/05ph
u r hot (Score:2)
Re:u r hot (Score:5, Funny)
Re:u r hot (Score:4, Funny)
BugMeNot (Score:2)
NY Times Registration [bugmenot.com]
URLs for actual paper (Score:5, Informative)
Slashdotting a cell phone (Score:2, Funny)
I call shenanigans... (Score:5, Insightful)
Re:I call shenanigans... (Score:2)
Re:I call shenanigans... (Score:2)
Re:I call shenanigans... (Score:2)
Re:I call shenanigans... (Score:2)
This is exactly the kind of random bullshit that I'm going to hear someone quote as the god's truth as the easiest way to bring Manhattan's cell phone services to a hault.
ISBN : 0520219783 (Score:2)
Re:I call shenanigans... (Score:2)
Re:I call shenanigans... (Score:4, Insightful)
Re:I call shenanigans... (Score:2)
Of course, one could elaborate more on this Fermi-like problem [wikipedia.org], but I don't that'd be neccessary
Re:I call shenanigans... (Score:2)
Re:I call shenanigans... (Score:2)
Re:I call shenanigans... (Score:2)
Around 1.5 million people in Manhattan. So that would be saying every single man, woman, and child in the Manhattan send 4.75 text messages a day.
Ummm. No. Manhattan has a population of 1.5 million. That means 1.5 million live there. The number of people who work in Manhattan every day is quite a bit higher -- 4.5 or 5 million I'd reckon, maybe more.
I'm still highly skeptical of this but know that it is possible. I was in Slovakia in 2002 when they won the ice-hockey world championships. It's a small
Re:I call shenanigans... (Score:2)
That's the point. An SMS is far more discrete than a voice call while you are at work.
Texting phones is free with Google (Score:5, Informative)
http://toolbar.google.com/send/sms/index.php [google.com]
Now all you need is a perl script and
-------------
judge a man by his wallet [jfold.com]
Re:Texting phones is free with Google (Score:2)
For those who modded me offtopic: Chill. My post was completely "On topic".
The story is about sending 165 text messages per second. There have already been a half-dozen posts pointing out how expensive it would be to send 165 text messages per second. A few others have pointed out that their thumbs can't type that fast.
Google's SMS interface overcomes both those barriers, and is potentially a dangerous tool for disrupting phone service.
God I hate overzealous modders. Chill. Talk about "disrupting traf
Re:Texting phones is free with Google (Score:2)
Re:Texting phones is free with Google (Score:2)
Re:Texting phones is free with Google (Score:2)
while 1=1
echo 'j00 r fux0red' | mail xxxxxxxxxx@messaging.sprintpcs.com
would screw someone pretty hard if they had to pay for incoming messages.
watch funny commercials [tubespot.com]
Re:Texting phones is free with Google (Score:3, Funny)
"Can you hear me now? Can you hear me now?"
Re:Texting phones is free with Google (Score:3, Informative)
now I know why text messages cost a fortune... (Score:4, Interesting)
Ah. So that's why it costs an insane amount of money to send a text message (well, that and a text message may mean "no phone call to bill for".)
Also- can anyone explain why data is still so damn expensive? I have a data capable phone w/bluetooth, I travel a fair bit...but I don't ever use the data service, because it's so incredibly expensive. 2-8MB runs you almost as much as the voice service does!
Seems like they could make a lot of people happy if they made data more affordable. I guess we'll have to wait for one of the providers to start competing on that front, instead of buying each other up? :-)
Re:now I know why text messages cost a fortune... (Score:2)
Sounds like you're getting screwed. With Verizon, I can use 1xRTT data almost anywhere (~90 kbps average, 144 kbps max) and with my America's Choice plan, it's billed just like a voice call - meaning it's free between 9PM-6AM and on weekends. If you use
Re:now I know why text messages cost a fortune... (Score:2)
Re:now I know why text messages cost a fortune... (Score:3, Informative)
so yeah data is expensive, and frankly the answer to that was going to be the FCC taking all 13 channels of VHF broadcast and converting them to various products including a large subset to be licensed for cellular broadcasts... but the states is nowhere near the numbers that would allow the FCC to license off those frequencies.
if you ha
Re:now I know why text messages cost a fortune... (Score:3, Funny)
Sure. Carriers would prefer a small number of people to pay extremely high rates than a whole lot of people paying a reasonable rate. Otherwise they have to invest a lot more in their infrastructure to support the extra traffic. Competition is the only way to help the consumer in this area - the threat of completely losing a customer to a competitor is the only real motivation for a carrier to do anything. All the carriers have their data rate
Re:now I know why text messages cost a fortune... (Score:2)
they didn't take into account that people would use it for data logging etc.. so they just made it 1000 sms's per month or so after people did use it for data logging and such.
No 12 Days of Christmas (Score:5, Funny)
Hey Steve! (you ass)
Re:No 12 Days of Christmas (Score:2)
some alarming quotes from the NYT article (Score:2)
Nice observation (Score:2, Insightful)
"It seems to me unlikely that a small number of unsophisticated users would be able to mount this attack effectively."
Who cares! Those aren't the people we're worried about. It would just take ONE sophisticated user to mount this attack.
I don't buy it. (Score:2, Informative)
So there are already somewhere in the rough ballpark of 1 million text messsages being sent a day. Possibly many more, probably no less.
that equates to 41,000 per hour, or 72 per second, on average.
Now of course the texts aren't spread evenly over those 24 hours. The majority of those messages will be sent during 12 hours of the day, which would mean during
Re:I don't buy it. (Score:2)
Re:I don't buy it. (Score:2, Informative)
Re:I don't buy it. (Score:2)
Re:I don't buy it. (Score:2)
Per City, or per Cell? (Score:4, Insightful)
Now if you could figure out how to send messages to a bunch of different phones all in the same cell then you may be able to take that one cell out of business for a while, but DoS all of Manhattan? I think not.
Grand Central Station (Score:3, Insightful)
All you guys in Manhattan! (Score:2, Funny)
GSM SMSC bandwidth/throughput (Score:2, Informative)
New Cell Security (Score:2)
Yeah, we've upped it, now you have to send 172 texts per second!
Next up (Score:2, Funny)
QUICK! Let's take down some websites! (Score:2)
what is even more evil... (Score:5, Informative)
Sprint: 10-digit-number@messaging.sprintpcs.com
Verizon: 10-digit-nmber@vtext.com
AT&T: 10-digit-number@mobile.att.net
T Mobile: 10-digit-number@tmomail.net
Nextel: 10-digit-number@messaging.nextel.com
Cingular: 10-digit-number@mobile.mycingular.net
Alltel: 10-digit-number@message.alltel.com
i can see how they could put in safe-guards like monitoring multiple messages from an IP in a certain time frame. but, smart programmers can work around this fairly easily.
Maybe I missed something...? (Score:2)
If it were true, and they release findings like that, wouldn't that be like just painting a big target sign on cellular infrastructure?
Re:Maybe I missed something...? (Score:2)
Ok I know the analogy is not exactly the same (can't get Chapin outta my head) but the principle is still the same. Knowing the breaking point of something does not "paint a target" on it.
Blackberry has the same problem (Score:3, Interesting)
"We monitor our network for security issues - BULLSHIT", they monitor the billing systems and channels for abuse - sure - but not the QOS.
Re:Blackberry has the same problem (Score:2)
*Financial* security.
Whenever an outfit like this (or Microsoft) talk about security being their highest priority they *always* mean 'financial security'
how about a JAMMER? (Score:2)
and a whole lot of other ways. but their method isn't good for anything if the priorities are set up correct for the cell.
Not hard to implement. (Score:3, Informative)
Let's look at it this way:
Sources of Bandwidth/Attacks
The original article assumes you wanted to take out more than one sector in the cellular coverage. If you wanted to be more specific and pinpoint only a handful of sectors, you would need less than the numbers the article specifies.
Most text messaging service providers have email gateways. This is one of the reasons why I disabled my text messaging capability. No way to filter the message and at $0.10 / message, it is too abusable.
A weak computer running a fast multi-threaded emailer(Postfix) can dump a fair amount of email at a email-to-sms gateway. It is amazing how many messages/sec you can achieve if you tweak your configuration. 3-4 well placed and configured systems could take out a sector or 2. Distribute that over 10-20 thousand zombies, and you have much greater capacity and better redundancy. The provier will either need to already have anti-DDOS equipment in place or shut down the gateway. Bounce those over open relays and it makes dynamic rerouting even more difficult.
Scenario:
There is a convention going on. Someone was going to launch an attack on the convention site. They don't need to wipe out access to the entire city. They only need to wipe out acccess to the cellualr cells/sectors covering the convention area itself.
So, they gain access to a list of peoples' phone numbers, who will be attending and SMS-bombard those numbers.
Guess what? Since all of those numbers are at the convention site and being serviced by a fixed number of cellular cells, you have now effectively targetted those cells and overloaded them.
With the cell access busy, to the people trying to make calls or receive calls at the convention, an attack on the convention would only be reportable by landline and/or by bystanders outside of the convention center.
Say the attack is a silent one: chemical, toxin, biological. The emergency response would be delayed enough that most of the target individuals would be dead before help could arrive. Most people these days depend heavily on their cell phones. The first thought isn't to try to make a call on a landline for many.
Another abuse would be to use the system to financially deplete another organization's funds by ramping up their telco fees through excessive messaging via a zombie network. While most organizations might have flat fee subscriptions, some do not. Especially for their one-off need-it-now celphone plans.
I've actually called my provider and asked them about filtering and blocking, but they have told me that it was either completely on or completely off. I chose completely off.
In other news... (Score:3, Funny)
Tell us something we didn't know.. every technology has it's limit, flood it beyond capacity and you will see it fail.
nice.
-b
Telco networks are not like the Internet (Score:5, Informative)
Nobody has ever allowed for a one to one switching network like you may have seen with a switched hub. It's too expensive. They use trunk lines instead. The number of trunk lines depends on the statistics of the local area calling. There are benchmarks to use for various types of service. These systems are designed for four and five nines of up time. But it's not overload proof. You have all gotten fast busy signals before. That's because there were no trunks available.
What these folks have figured out is how much bandwidth a typical cell site can have. They have figured out how many text messages it would take to fill up that available bandwidth. Big Deal. Cell sites do saturate. This is not a design "flaw" --it's a design point. Just as almost nobody builds buildings to withstand 200 MPH winds, almost nobody builds that much bandwidth in to a cell site. You could, but it would almost never get used.
Instead we build them to handle almost all conditions. Yes, they can saturate. That's a political design issue. Someone who knows the design points can certainly overload one. But during normal use, they will work just fine. Since there are no lasting effects from such overload, most engineers figure that people will just clear out before things get too dicey.
Naturally, some twits who want to jam cell phone conversations will find plenty of ways to do this. The network is built for civil use --not military use. That's why police and fire authorities use seperate communications networks (or if they don't they're just asking for trouble). That's why ham radio operators are often able to render assistance when everyone else is busy trying to call home. Common Carrier networks will overload at some point, just as roads can saturate and slow to a crawl. We'll never have enough bandwidth or enough roads. But we can ensure that there will be enough to get by.
The Times could do for a brief lesson in engineering design criteria...
Blackberry jam (Score:5, Funny)
Re:What flavour? (Score:2)
Re:What flavour? (Score:2, Funny)
Jam starts dripping down the screen.
RADAR TECH.
HELMET Jammed? (takes a taste of the jam) Raspberry. There's only one man who would dare give me the raspberry. (pulls down mask) Lone Starr!
CAMERA hits HELMET. HELMET falls backwards.
Re:165 msgs a sec OR (Score:5, Insightful)
Except this isn't about disrupting one phone - this is about disrupting the entire regional network. Just the sort thing a criminal or terrorist might want to do during or in the wake of some mal-behavior. So it costs a bunch to send those messages? So what? Bad guys can have some real (or fraudulant) financial resources when that's part of their plan.
Re:165 msgs a sec OR (Score:5, Funny)
1) Sign cell phone contract with monthly billing.
2) Send massive amounts of text messages.
3) Blow self up.
4) Don't care if phone bill is high at end of month - having too much fun with the 72 virgins.
5)
6) Profit?
Re:165 msgs a sec OR (Score:4, Funny)
Don't you mean "Prophet?"
Re:165 msgs a sec OR (Score:2, Informative)
Re:165 msgs a sec OR (Score:5, Insightful)
But... I think it's not the vox bandwidth - it's that part of the system that manages the call overhead (per the summary, the part of the system that "sets up" the calls). I believe that housekeeping does indeed take place in a smaller, and separate piece of the spectrum and the network's plumbing. Of course, IANATE (I am not a telecommunications engineer). Text messaging piggy-backs on the data that keeps the system and the phones aware of each other - long before a call (and the related bandwidth) is actually assigned to an user that dials/answers. This would be when someone who works for Verizon or Spring would anonymously chime. We can hear you now, good.
Re:165 msgs a sec OR (Score:2)
Re:165 msgs a sec OR (Score:2)
Re:165 msgs a sec OR (Score:2)
I don't know why a terrorist would need to do additional stuff to disrupt a cellphone network after an attack: Any event of note would be enough to take care of that.
Its not just the spammer's fault (Score:3, Insightful)
Re:How fast can you think and type!???! (Score:3, Informative)
Re:How fast can you think and type!???! (Score:2)
-- Ravensfire
Re:How fast can you think and type!???! (Score:2)
Re:Expensive (Score:2)
Re:Expensive (Score:3, Insightful)
Re:Expensive (Score:3, Funny)
Re:Maybe it is time to bring back CDPD (Score:3, Interesting)
Re:SMS is quite popular in Europe, how come not Do (Score:4, Insightful)
We've got, what?? Comcast with 7 mbit (shared) down and 1.5 mbit (dedicated) up, as the "potentially best" service? (Roadrunner offers 10 mbit down, but only 512 kbit up, Speakeasy is 6 mbit down dedicated, 768 kbit up dedicated?)
These people have a much larger pipeline to use. *NOW* the big difference is the pipeline leaving their country to go to other countries. Any bets on where most of that data gets sent? You betcha, USA.
Re:SMS is quite popular in Europe, how come not Do (Score:3, Interesting)
I think you're really misunderstanding the issue. A DoS by flooding the cell with SMS messages has the chance of working because on-the-wire, (or "on