Threat Category: SMS / MMS / RCS
ID: CEL-20
Threat Description: Mobile devices can automatically connect to URLs delivered via SMS messages. When the user’s mobile device connects to the URL, device fingerprinting can take place.
Threat Origin
Exploit Examples
Not Applicable
CVE Examples
Not Applicable
Possible Countermeasures
References
N.J. Croft and M.S. Olivier, “A Silent SMS Denial of Servie (DoS) Attack”, in Information and Computer Security Architectures (ICSA) Research Group South Africa, 2007; http://mo.co.za/open/silentdos.pdf [accessed 8/29/2016] ↩
Z. Lackey, Attacking SMS, presented at Blackhat, 30 July 2009; www.blackhat.com/presentations/bh-usa-09/LACKEY/BHUSA09-Lackey-AttackingSMS-SLIDES.pdf [accessed 8/29/2016] ↩