The vulnerabilities of SS7 and newer Diameter protocols and their use for signaling attacks is sufficiently documented and unfortunately widespread. If the home network cannot provide adequate protection, attackers are able to gain access to the SS7/Diameter interconnection network and launch attacks against any mobile network and subscriber in the world. These attacks range from privacy breaches to fraud to denial of service attacks on the core network infrastructure impacting millions of subscribers. Read article
The new world of 5G offers the opportunity to address the vulnerabilities of another long-standing technology: GTP, the GPRS Tunneling Protocol. It is used to transmit user data and control traffic on 2G, 3G and 4G networks and will also be used as part of 5G. The main reason for successfully carried out attacks is the inability of GTP to verify the user’s location, so it is important to have as much traffic visibility as possible. Given the complexity of both LTE and 5G roaming networks, configuration errors must be avoided at all costs. Attackers discover misconfigurations very quickly and exploit them to their advantage. Read article
At the same time, it should be said that, thankfully, effective and powerful countermeasures exist, and they are constantly improved. Not only MNOs, also the people involved in fraud prevention and detection don’t just clean up after an attack, they take the fight to the fraudsters. We have decided to help them to be smarter than their criminal opponents.
There is no way around understanding and controlling exactly how traffic flows in and out of the network. Carefully reviewing roaming network configurations, for example, is one of the first steps to protecting your valuable assets from attacks. RoamsysNext is an independent link in this chain, and already today our tools simplify and validate the correct configuration of each roaming-relevant network element. This helps MNOs block any unwanted or unauthorized traffic with very little effort. For more than 12 years, RoamsysNext has specialized in software development and project management.
Since 2009, we have been the exclusive provider of RAEX solutions for the GSMA. We serve our customers with excellent service and competitive pricing. Already more than 700 MNOs around the world rely on our tools and services. If you would like to learn more about our products, just get in touch at firstname.lastname@example.org. We will be happy to help you, and we will always find a great solution for your requests.