New 5G attack named 5Ghoul can exploit Qualcomm, MediaTek chips
Take action: A vulnerability in a chipset in your mobile phone is not something you can do much about. Except update your phone to the latest OS and firmware. So don't ignore those updates, there are so many things in the phone that need updating all the time.
The "5Ghoul" attack, identified by Singapore university researchers, targets critical vulnerabilities in 5G modems by Qualcomm and MediaTek, impacting a wide range of 5G smartphone models from major brands like Google, Apple, and others, as well as routers and USB modems. This attack poses significant risks, including service disruptions and network downgrades, and is particularly concerning due to its potential to exploit devices without requiring knowledge of the target's SIM card details.
List of Publicly Disclosed Vulnerabilities:
The CVE-2023-33042 vulnerability is particularly critical as it can force a device off the 5G network and onto 4G, potentially exposing it to additional vulnerabilities. While Denial of Service flaws can cause temporary loss of connectivity, they can be especially disruptive in critical service environments.
Both Qualcomm and MediaTek have responded with security bulletins, and patches were provided to device vendors. However, the distribution of these fixes to end-users might be delayed due to the complexity of the software supply chain, especially for Android devices. In some cases, older models might not receive updates at all.
Users should be aware of signs indicating a "5Ghoul" attack, such as unexpected loss of 5G connections or consistent fallback to 4G networks, despite the availability of 5G. Staying updated with the latest security patches and being vigilant about unusual network behaviors are key to protecting against such vulnerabilities.