Hacking IoT/SCADA with cellular connectivity: Rogue cells and how they work, in detail. 🗼😈📱🚙🏭🏥

Security researcher Mike Curnow presents a deep dive into rogue cellular base stations (aka IMSI catchers, aka “rogue cells”) and explains how they can be used not just for surveillance, but to disrupt or manipulate critical infrastructure.

A quite rare talk that explains how cellular devices choose which cell to connect to, focusing on baseband processors, radio resource control (RRC), and the early stages of network attachment.

I especially like the comparison of how cell towers provide directional coverage to a pizza, and the reference to Dean Martin - but maybe I’m just too old or too hungry right now :)

Great talk with lots of interesting details on how IMSI catchers work and the damage they can do. Enjoy the learning, and please share it!

More details:

(Perfect) Cell Games: You Thought It Was Just Surveillance... [Youtube]: https://lnkd.in/dbF_YyZJ