CAPEC-617

Detailed Abstraction Level
Meta — Very abstract, high-level category
Standard — Specific enough to understand
Detailed — Tied to specific technique
Draft MITRE CAPEC Status
Stable — Fully reviewed and complete
Draft — Under development
Incomplete — Partially defined
Deprecated — No longer recommended
Obsolete — Replaced by another CAPEC
Severity: Low
Cellular Rogue Base Station

Description

In this attack scenario, the attacker imitates a cellular base station with their own "rogue" base station equipment. Since cellular devices connect to whatever station has the strongest signal, the attacker can easily convince a targeted cellular device (e.g. the retransmission device) to talk to the rogue base station.

Prerequisites

None

Mitigations

Passively monitor cellular network connection for real-time threat detection and logging for manual review.

Skills Required

[Low] This technique has been demonstrated by amateur hackers and commercial tools and open source projects are available to automate the attack.