The vulnerability discovered by our research impacts enterprise customers using network slicing, leaving them exposed to malicious cyberattacks such as denial of service and data breach. AdaptiveMobile Security has been working in conjunction with the GSMA, operators and standards bodies to address the issue and update architectures to prevent exploitation.
User data extraction through location tracking attacks.
Denial of service against another network function.
Access to a network function and related information of another vertical.
“Currently, the impact on real-world applications of this network slicing attack is only limited by the number of slices live in 5G networks globally. The risks, if this fundamental vulnerability in the design of 5G standards had gone undiscovered, are significant. Having brought this to the industry’s attention through the appropriate forums and processes, we are glad to be working with the operator and standards communities to highlight this issue and promote best practice going forward.”
Dr. Silke Holtmanns, Head of 5G Security Research at AdaptiveMobile Security
Network slicing allows a mobile operator to divide their network into multiple distinct virtual blocks that provide different amounts of resources and prioritization to different types of traffic.
Network slicing will allow operators to provide portions of their networks for specific customer use cases in verticals such as Automotive, Healthcare and Entertainment. As a result, the network is open to many partners and sliced into use cases and vertical specific blocks.
AdaptiveMobile Security, an Enea company is the world leader in mobile network security, protecting more than 2.1 billion subscribers worldwide. With deep expertise and a unique focus on network-to-handset security, AdaptiveMobile’s award-winning security solutions and services provide its customers with advanced threat detection and actionable intelligence, combined with the most comprehensive security product-set in the market today.
AdaptiveMobile Security was founded in 2006 and counts some of the world’s largest carriers, Governments and Regulators as customers. The Company is headquartered in Dublin with offices in North America, Europe, South Africa, the Middle East and Asia Pacific.
Protecting Every Nation! Every Network! Every Number!