Mobile Threat Catalogue

Device Fingerprinting via SMS

Contribute

Threat Category: SMS / MMS / RCS

ID: CEL-20

Threat Description: Mobile devices can automatically connect to URLs delivered via SMS messages. When the user’s mobile device connects to the URL, device fingerprinting can take place.

Threat Origin

A Silent SMS Denial of Service (DoS) Attack 1

Attacking SMS 2

Exploit Examples

Not Applicable

CVE Examples

Not Applicable

Possible Countermeasures

References

  1. N.J. Croft and M.S. Olivier, “A Silent SMS Denial of Servie (DoS) Attack”, in Information and Computer Security Architectures (ICSA) Research Group South Africa, 2007; http://mo.co.za/open/silentdos.pdf [accessed 8/29/2016] 

  2. Z. Lackey, Attacking SMS, presented at Blackhat, 30 July 2009; www.blackhat.com/presentations/bh-usa-09/LACKEY/BHUSA09-Lackey-AttackingSMS-SLIDES.pdf [accessed 8/29/2016]