June 15, 2023
June 15, 2023
Freaky Leaky SMS: Extracting User Locations by Analyzing SMS Timings
In this paper, we demonstrate that merely receiving silent SMS messages regularly opens a stealthy side-channel that allows other regular network users to infer the whereabouts of the SMS recipient. The core idea is that receiving an SMS inevitably generates Delivery Reports whose reception bestows a timing attack vector at the sender. We conducted experiments across various countries, operators, and devices to show that an attacker can deduce the location of an SMS recipient by analyzing timing measurements from typical receiver locations. Our results show that, after training an ML model, the SMS sender can accurately determine multiple locations of the recipient.
[2306.07695] Freaky Leaky SMS: Extracting User Locations by Analyzing SMS Timings
Short Message Service (SMS) remains one of the most popular communication channels since its introduction in 2G cellular networks. In this paper, we demonstrate that merely receiving silent SMS messages regularly opens a stealthy side-channel that allows other regular network users to infer the whereabouts of the SMS recipient. The core idea is that receiving an SMS inevitably generates Delivery Reports whose reception bestows a timing attack vector at the sender. We conducted experiments across various countries, operators, and devices to show that an attacker can deduce the location of an SMS recipient by analyzing timing measurements from typical receiver locations. Our results show that, after training an ML model, the SMS sender can accurately determine multiple locations of the recipient. For example, our model achieves up to 96% accuracy for locations across different countries, and 86% for two locations within Belgium. Due to the way cellular networks are designed, it is difficult to prevent Delivery Reports from being returned to the originator making it challenging to thwart this covert attack without making fundamental changes to the network architecture.
June 13: Qihoo 360 founder Zhou Hongyi (周鸿祎) presented the built-in “multilevel filtering and censorship framework” (多级过滤和审核体系) of its LLM-based chatbot during the launch of 360智脑 (360 Smart Brain)… pic.twitter.com/znL33gaJKW
— Byron Wan (@Byron_Wan) June 14, 2023
Man goes to doctor, says, doctor I’m very depressed. World seems a cold and hopeless place. Don’t know what to do. Doctor says, ‘As a large language model, I cannot recommend a particular clown or circus to you
— Alice Podcasts (@AliceAvizandum) June 14, 2023
Prostitute ‘review’ website Escort Advisor lays a wreath in front of Silvio Berlusconi’s villa
— Crazy Ass Moments in Italian Politics 🇮🇹 (@CrazyItalianPol) June 14, 2023
June 14, 2023 pic.twitter.com/HT2fq3sxBg
— Classical Studies Memes for Hellenistic Teens (@CSMFHT) June 15, 2023
— Dr. Dan Lomas (@Sandbagger_01) June 15, 2023
I read Germany’s new national security strategy so you don’t have to.
— Ulrike Franke (@RikeFranke) June 14, 2023
(Though, it’s not a terrible read, so don’t let me keep you).
Thread with some thoughts and main points according to, well, me.#Sicherheitsstrategie pic.twitter.com/qhqB4QFBoL
German national strategy document.
https://www.nationalesicherheitsstrategie.de/National-Security-Strategy-EN.pdf
Is the US trying to kill crypto? - BBC News
The digital asset industry, already in turmoil, now faces a full-fledged battle with regulators.
https://www.theregister.com/2023/06/14/european_commission_google_breakup/
Police Officers Terrified By Story Of Tape That Shows Fentanyl Then 7 Days Later You Die
SEATTLE—Shuddering while listening to the horrifying tale, a group of police officers reportedly were terrified Wednesday by the story of a tape that shows fentanyl and then 7 days later you die. “Apparently there’s this old VHS tape going around that shows grainy footage of a pile of fentanyl pills, and if you watch…
Unrelated to malware, several individuals have been charged with trafficking stolen human body parts from Harvard Medical University.
— vx-underground (@vxunderground) June 15, 2023
The schools morgue manager received paypal memos with titles such as “head number 7” and “braiiiins”. pic.twitter.com/qHmXK4xvWH
New Techniques: Uncovering Tor Hidden Service with Etag #OSINT #OPSEC https://t.co/0A1YrMNQu3
— Mr. Anime man (@SttyK) June 14, 2023
BBC News - Russian embassy: Australia blocks new Canberra site over spying riskhttps://t.co/E9rVZWprS5
— Dr. Dan Lomas (@Sandbagger_01) June 15, 2023
Connections to California and China might be sticking point for Israeli regulators in chewing gum heir and Hollywood producer’s bid to acquire NSO (by @omerka) https://t.co/7ARhgjeWwG
— Bill Marczak (@billmarczak) June 15, 2023
STOP POSTING FAKED STUNT HACKS!
— MG (@MG) June 14, 2023
Remember the guy “smoking” his power meter with a Flipper? Yet another faked video!
The guy (Peter Fairlie) had extra meters setup on the side of his house for this, & these meters can’t do what is shown anyway.https://t.co/6tp0vGMnR7
Now Financial Times @FT @gilliantett is joining the chorus that warns from open-sourcing AI models, comparing the dangers to deadly pathogens. That is unfortunate… https://t.co/xIYfsRyBSE pic.twitter.com/XnhhWwwZPo
— Lukasz Olejnik (@LukaszOlejnik@Mastodon.Social) (@lukOlejnik) June 15, 2023
Incredible how Lukashenko’s sons are literally the two types of Eastern European man pic.twitter.com/wntOnPtcG4
— Luka Ivan Jukic (@lijukic) June 14, 2023
— Seva (@SevaUT) June 14, 2023
🔵⚪🔴#BREAKING Large-scale disinformation/information operation targeting France and EU countries. In a rare move, France attributes it to Russian State. “fake websites impersonating national media and government sites, fake accounts on social networks”. https://t.co/1BGAtWOLi6
— Lukasz Olejnik (@LukaszOlejnik@Mastodon.Social) (@lukOlejnik) June 13, 2023