The Vulnerability Exploitation Conveying Digital Data Over Mobile Voice Call Channels

Seungjoon Lee, Youngmok Ha, Sungjun Yoon, Hyunju Jo, Soohee Jang, Jiyeon Lee, Youngan Kim, Ji Won Yoon

Research output: Contribution to journalArticle

Abstract

As employees bring mobile devices into the workplace, many companies have been encouraging their use for business purposes. As a result, data leakage accidents have been increasing, which can weaken companies’ competitiveness and can even threaten their survival. Therefore, many companies have recently adopted data leakage/loss prevention (DLP) solutions to avoid such leakages. However, these solutions and their study are limited to dedicated data channels such as SMS/MMS, HSPA and WIFI, but other types of channels, such as, voice call channels can be used to bypass and inactivate the DLP. In this paper, our attack model focuses on the malicious use of digital communication over these voice call channels by showing the possibility to deliver the text files, pictures and malicious codes. Furthermore, we also use post processing such as spell checking and image restoration for the maximum effectiveness of our attack scenario. Overall, we show the feasibility of voice call channels as new malicious attack channels.

Original languageEnglish
Pages (from-to)1-28
Number of pages28
JournalWireless Personal Communications
DOIs
Publication statusAccepted/In press - 2017 May 25

    Fingerprint

Keywords

  • Data leakage prevention
  • Malware
  • Mobile voice call

ASJC Scopus subject areas

  • Computer Science Applications
  • Electrical and Electronic Engineering

Cite this