Ghost Telephonist Link Hijack Exploitations in 4G LTE CS Fallback

Explore a critical vulnerability in 4G LTE Circuit Switched Fallback (CSFB) networks in this 48-minute Black Hat presentation. Discover how the 'Ghost Telephonist' attack exploits the missing authentication step in CSFB procedures, allowing attackers to hijack victim communications. Learn about various exploitations enabled by this vulnerability, including the potential interception of unencrypted or weakly encrypted calls and SMS messages. Presented by Haoqi Shan, Jun Li, Yuwei Zheng, Lin Huang, and Qing Yang, this talk provides valuable insights into mobile network security and the importance of robust authentication mechanisms in telecommunications infrastructure.