Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3
2788 posts

Uber Geek


  #692174 27-Sep-2012 12:34
Send private message

Alternatively, Root the phone, freeze\disable the phone application and use a 3rd party app like GoContacts.

This will probably cause the phone to no longer receive OTA updates though.




8275 posts

Uber Geek

Subscriber

  #692197 27-Sep-2012 13:05
Send private message

Just tested this with my SGS2 running ICS. The Chrome browser brought up the IMEI but using Opera Mobile 12 it was clear which is my default browser.. So go and install Opera Mobile 12..




Regards,

Old3eyes


 
 
 
 


827 posts

Ultimate Geek


  #692363 27-Sep-2012 17:09
Send private message

Does anyone else find it strange how this comes out just as the iPhone 5 launches? Considering it is essentially as basic as a website using mailto links for whatever reasons

5583 posts

Uber Geek

Trusted
Subscriber

  #692379 27-Sep-2012 17:48
Send private message

karit: I happens on my Nexus One with 2.3.6.

https://dylanreeve.posterous.com/remote-ussd-attack has a link to http://dylanreeve.com/phone.php which will utilise the same security flaw but show you the IMEI number instead of wiping your phone. This will indicate if you are at risk when you visit that URL on your phone.

Current mitigation is to install an alternate dial e.g. https://play.google.com/store/apps/details?id=kz.mek.DialerOne is suggested in link above and is what I currently have in place as a mitigation strategy.

Now just waiting for the QR codes and dodgy links to be placed around the place and start wiping phones. Hopefully this is exploited heavily and in the media so the Cellcos and Google start doing updates. Even minor patches e.g. 2.3.7 for instance. From what I read they fix/patch was written three months ago.............


My LG Optimus 3D Max (running stock Android v2.3.6) is NOT vulnerable to attack. Good to know. :-)  




_____________________________________________________________________
If you order a Tesla, click my referral code below to order your car and get free stuff. 

 

My Tesla referral code: https://ts.la/steve52356


446 posts

Ultimate Geek


  #692469 27-Sep-2012 20:21
Send private message

My bone stock Telecom sgs3, when visiting the above link brings up the dialler but doesn't input any numbers. Should I be worried?

gzt

11114 posts

Uber Geek


  #692476 27-Sep-2012 20:36
Send private message

juha: I've got to say given the number of affected devices - and we don't yet know what a creative attacker can do with USSD codes that vary from device to device - the industry response has been remarkably casual. Good on Samsung for stepping up and issuing patches, but what about the rest?

It is not good but this is the normal response. This has been the standard practice so far. In this case appearances are worse because any phone user can easily understand it, because it is related to a user function performed by phone UI.

156 posts

Master Geek


  #692485 27-Sep-2012 20:49
Send private message

Tried it on my galaxy s2, the default browser did it, but opera didn't.



 
 
 
 


1488 posts

Uber Geek

Subscriber

  #692575 28-Sep-2012 02:02
Send private message

And once again we have carriers deliberately sabotage Android - Yes they're dramatic words but honestly, give the scope of such a security blunder I would have thought that the carriers would be talking to Samsung to get the updates out the door asap without any delays.




Laptop: MacBook Pro (15-inch, 2017)
Desktop: iMac (27-inch, 2017)
Smartphone: iPhone 11 Pro Max 256GB 'Space Grey'
Additional devices: Unifi Security Gateway, Unifi Switch, Unifi AP AC HD, Unifi Cloud Key, Apple TV 4K 64GB
Services: YouTube Premium, Wordpress, Skinny Mobile and Broadband, G Suite

 


19282 posts

Uber Geek
Inactive user


  #692576 28-Sep-2012 02:10
Send private message

If anyone is that worried about it just do a backup of the data on your handset

1488 posts

Uber Geek

Subscriber

  #692578 28-Sep-2012 02:15
Send private message

johnr: If anyone is that worried about it just do a backup of the data on your handset


Why don't' the carriers pull finger and approve the fix straight away? if the confidence in Samsung releasing an update that doesn't screw things up is that low then maybe questions should be asked whether the carriers should sell Samsung in the first place given the lack of confidence said organisations have in Samsung's own QA process.




Laptop: MacBook Pro (15-inch, 2017)
Desktop: iMac (27-inch, 2017)
Smartphone: iPhone 11 Pro Max 256GB 'Space Grey'
Additional devices: Unifi Security Gateway, Unifi Switch, Unifi AP AC HD, Unifi Cloud Key, Apple TV 4K 64GB
Services: YouTube Premium, Wordpress, Skinny Mobile and Broadband, G Suite

 


19282 posts

Uber Geek
Inactive user


  #692579 28-Sep-2012 02:50
Send private message

Drama Queen

84 posts

Master Geek


  #692647 28-Sep-2012 08:19
Send private message

johnr: If anyone is that worried about it just do a backup of the data on your handset


Seriously that is VF response? I am so glad I am no longer with you.

Will you be increasing everyone data plans to allow for realtime backup of everything?

If there is a hole in Windows I am sure MS wouldn't say make sure you backup and leave it at that, they would release a patch and all the ISPs would heavily encourage their userbase to update as quickly as possible.

Carriers say it might break our network (or bloatware) can someone please post me to a link where the firmware on a phone had broken a cell network? As I don't know of any instances and currently this is FUD and my assumption is it more about getting people to buy new phones than "protecting" their network kit. I challenge you to prove me wrong. Preferable with an Android example; a 1g phone example from the 80s won't really cut it.

8275 posts

Uber Geek

Subscriber

  #692893 28-Sep-2012 13:35
Send private message

kawaii:
johnr: If anyone is that worried about it just do a backup of the data on your handset


Why don't' the carriers pull finger and approve the fix straight away? if the confidence in Samsung releasing an update that doesn't screw things up is that low then maybe questions should be asked whether the carriers should sell Samsung in the first place given the lack of confidence said organisations have in Samsung's own QA process.


I believe it's not only a Samsung thing..




Regards,

Old3eyes


84 posts

Master Geek


  #692899 28-Sep-2012 13:40
Send private message

old3eyes:
kawaii:
johnr: If anyone is that worried about it just do a backup of the data on your handset


Why don't' the carriers pull finger and approve the fix straight away? if the confidence in Samsung releasing an update that doesn't screw things up is that low then maybe questions should be asked whether the carriers should sell Samsung in the first place given the lack of confidence said organisations have in Samsung's own QA process.


I believe it's not only a Samsung thing..


Reading more it appears the running of codes is widespread across Android version, but the particular factory reset code only appears to be on a sub set of Samsung phones. (And will be that way until the reset codes for other phones are found)

19282 posts

Uber Geek
Inactive user


  #692907 28-Sep-2012 13:51
Send private message

karit:
johnr: If anyone is that worried about it just do a backup of the data on your handset


Seriously that is VF response? I am so glad I am no longer with you.

Will you be increasing everyone data plans to allow for realtime backup of everything?

If there is a hole in Windows I am sure MS wouldn't say make sure you backup and leave it at that, they would release a patch and all the ISPs would heavily encourage their userbase to update as quickly as possible.

Carriers say it might break our network (or bloatware) can someone please post me to a link where the firmware on a phone had broken a cell network? As I don't know of any instances and currently this is FUD and my assumption is it more about getting people to buy new phones than "protecting" their network kit. I challenge you to prove me wrong. Preferable with an Android example; a 1g phone example from the 80s won't really cut it.


No it's JohnR response!

Sure we have Blocked certain handsets that have caused high I levels on our network / Cells, If you want to get into the nitty gritty of things bring it on!

1 | 2 | 3
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Withings launches three new devices to help monitor heart health from home
Posted 13-Feb-2020 20:05


Auckland start-up Yourcar matches new car buyers with dealerships
Posted 13-Feb-2020 18:05


School gardens go high tech to teach kids the importance of technology
Posted 13-Feb-2020 11:10


Malwarebytes finds Mac threats outpace Windows for the first time
Posted 13-Feb-2020 08:01


Amazon launches Echo Show 8 in Australia and New Zealand
Posted 8-Feb-2020 20:36


Vodafone New Zealand starts two year partnership with LetsPlay.Live
Posted 28-Jan-2020 11:24


Ring launches indoor-only security camera
Posted 23-Jan-2020 17:26


New report findings will help schools implement the digital technologies curriculum content
Posted 23-Jan-2020 17:25


N4L to upgrade & support wireless internet inside schools
Posted 23-Jan-2020 17:22


Netflix releases 21 Studio Ghibli works
Posted 22-Jan-2020 11:42


Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30


JBL launches headphones range designed for gaming
Posted 13-Jan-2020 09:59


Withings introduces ScanWatch wearable combining ECG and sleep apnea detection
Posted 9-Jan-2020 18:34


NZ Police releases public app
Posted 8-Jan-2020 11:43



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.