Tomasz Lisowski
Tomasz Lisowski is a PhD student at the University of Birmingham who is actively exploring the security of cellular technologies, in particular, SIM cards. This resulted in an ever-growing range of open-source tools, demos, and experiments involving SIM cards and the cellular devices they are connected to.
Session
This talk shows our 4-year long journey of investigating SIM-originating attacks. We discovered multiple vulnerabilities across a myriad of devices ranging from phones to car chargers. The highlighted attacks include privacy leaks, corrupted memories in basebands, lockscreen bypasses and other logic bugs allowing us to control modems in unexpected ways.
Beyond these attacks, we discuss the tooling we built along the way and provide an outlook into the future research of this attack surface.