Home > CAPEC List > CAPEC-610: Cellular Data Injection (Version 2.9)  

CAPEC-610: Cellular Data Injection

 
Cellular Data Injection
Definition in a New Window Definition in a New Window
Attack Pattern ID: 610
Abstraction: Detailed
Status: Draft
Completeness: Stub
Presentation Filter:
+ Summary

Adversaries inject data into mobile technology traffic (data flows or signaling data) to disrupt communications or conduct additional surveillance operations.

+ Attack Prerequisites
  • None

+ Typical Severity

High

+ Attacker Skills or Knowledge Required

Skill or Knowledge Level: High

Often achieved by nation states in conjunction with commercial cellular providers to conduct cellular traffic intercept and possible traffic injection.

+ Solutions and Mitigations

Commercial defensive technology to detect and alert to any attempts to modify mobile technology data flows or to inject new data into existing data flows and signaling data.

+ Attack Motivation-Consequences
ScopeTechnical ImpactNote
DoS: resource consumption (other)
Attackers can disrupt or deny mobile technology communications and operations.
Modify application data
Attackers can inject false data into data or signaling system data flows of communications and operations, or re-route data flows or signaling data for the purpose of further data intercept and capture.
+ Technical Context
Architectural Paradigms
Mobile
+ Content History
Submissions
SubmitterOrganizationDateSource
CAPEC Content TeamThe MITRE Corporation2015-11-09Internal_CAPEC_Team

More information is available — Please select a different filter.
Page Last Updated or Reviewed: December 07, 2015