comscore Google RCS Messaging let Hackers to Take Full Control of User Accounts
News

Google RCS Messaging: Android text messaging service allows hackers to take full control of user accounts

Check out how hackers can take full control of user accounts with vulnerability found in RCS messaging. It affects 310 million active users with RCS services.

  • Updated: December 3, 2019 11:43 AM IST
Google Messages RCS Messaging

Google made RCS, also known as Rich Communications Services, available for Android users around the world in October. The Rich Communications Services bring chat like features to standard messaging services. It is the next generation SMS protocol meant to replace SMS and MMS services. First defined by GSM Association in February 2008, the service only started making its waves in April 2018 when Google started integrating it with its Allo messaging application. The IP-based messaging service is based on SIP and HTTP to enable features such as group chats, filters among others. Also Read - Google Messages RCS: How to get it on your Android smartphone in India

While RCS aims to bring features seen on services like WhatsApp and others to standard messaging service, it has been found to be not that safe. According to Security Research Labs report, the RCS functionality is not properly protected with some implementations. It reportedly allows for a range of different hacking attacks. The researchers note that the improper implementation of RCS functionality in many networks result in hackers gaining complete control over the user accounts. This also allows hackers to steal RCS configuration including SIP and HTTP credentials. Also Read - Google Messages RCS works in India; promises next-gen messaging alternative to SMS, WhatsApp

Watch: Google Messages RCS: How to enable this on any Android smartphone

“The implementation lack in certificate and domain validation which allows an attacker to intercept and manipulate communication in the middle and they also failed to validate user identity, which allows caller ID spoofing,” according to GBHackers on Security. “These vulnerabilities can be exploited by a remote or local attacker to intercept an OTP message and to host fraudulent transactions and to take over your online accounts.”

Photo: GBHackers

A remote or local attacker can track users, impersonate them, conduct fraud, intercept text and even initiate website DDoS with RCS hacking attacks. [The] “attacks make current RCS deployments as vulnerable to hacking as legacy mobile technologies, such as 2G and SS7,” the SRLabs researchers said. According to GSMA, there are already 310 million active users with RCS services. It is currently supported by 84 operators around the world and another 27 operators are expected to add support in Q1 2020.

The Rich Communications Services is currently supported only with Android devices. If RCS message is received by a device or network that does not support it yet then it automatically becomes a regular text message. The service allows advertisers to send interactive and personalized messages. It eliminates need for additional apps to enable full interactive functions. It is not clear whether Google has already started work on fixes noted by Security Research Labs.

For the latest tech news across the world, latest PC and Mobile games, tips & tricks, top-notch gadget reviews of most exciting releases follow BGR India’s Facebook, Twitter, subscribe our YouTube Channel.
  • Published Date: December 3, 2019 10:12 AM IST
  • Updated Date: December 3, 2019 11:43 AM IST



new arrivals in india

Xiaomi Mi 10T
Xiaomi Mi 10T

35,999

Xiaomi Redmi 9i
Xiaomi Redmi 9i

8,299

Xiaomi Mi 10T Pro
Xiaomi Mi 10T Pro

39,999

Infinix Hot 10
Infinix Hot 10

9,999

Vivo V20 SE
Vivo V20 SE

20,990

Vivo V20
Vivo V20

24,990

Micromax In 1b
Micromax In 1b

6,999

Micromax In Note 1
Micromax In Note 1

10,999

OnePlus 8T
OnePlus 8T

42,999

Samsung Galaxy F41
Samsung Galaxy F41

15,499

Apple iPhone 12 Pro Max
Apple iPhone 12 Pro Max

1,29,900

Apple iPhone 12 Pro
Apple iPhone 12 Pro

1,19,900

Apple iPhone 12 Mini
Apple iPhone 12 Mini

69,900

Apple iPhone 12
Apple iPhone 12

79,900

Poco X3
Poco X3

16,999

Realme Narzo 20A
Realme Narzo 20A

8,499

Realme Narzo 20
Realme Narzo 20

10,499

Realme Narzo 20 Pro
Realme Narzo 20 Pro

14,999

Oppo F17
Oppo F17

17,990

Samsung Galaxy M51
Samsung Galaxy M51

24,999

Poco M2
Poco M2

10,999

Oppo F17 Pro
Oppo F17 Pro

22,990

Realme 7 Pro
Realme 7 Pro

19,999

Realme 7
Realme 7

14,999

Xiaomi Redmi 9A
Xiaomi Redmi 9A

6,799

Vivo Y20
Vivo Y20

12,990

Xiaomi Redmi 9
Xiaomi Redmi 9

8,999

Nokia 5.3
Nokia 5.3

13,999

Motorola Moto G9
Motorola Moto G9

11,499

Realme C15
Realme C15

9,999

Realme C12
Realme C12

8,999

Samsung Galaxy Note 20
Samsung Galaxy Note 20

77,999

Xiaomi Redmi 9 Prime
Xiaomi Redmi 9 Prime

9,999

Oppo Reno4 Pro
Oppo Reno4 Pro

34,990

Samsung Galaxy M01 Core
Samsung Galaxy M01 Core

5,499

Realme 6i
Realme 6i

12,999

Asus Rog Phone 3
Asus Rog Phone 3

49,999

OnePlus Nord
OnePlus Nord

24,999

Infinix Smart 4 Plus
Infinix Smart 4 Plus

7,999

Xiaomi Redmi Note 9
Xiaomi Redmi Note 9

11,999

Samsung Galaxy M01s
Samsung Galaxy M01s

9,999

Vivo X50 Pro 5G
Vivo X50 Pro 5G

49,990

Vivo X50 5G
Vivo X50 5G

34,990

Realme C11
Realme C11

7,499

Poco M2 Pro
Poco M2 Pro

13,999

Realme X3
Realme X3

24,999

Realme X3 SuperZoom
Realme X3 SuperZoom

27,999

Tecno Spark Power 2
Tecno Spark Power 2

9,999

Oppo A12
Oppo A12

9,990

Oppo A52
Oppo A52

16,990

Samsung Galaxy A21s
Samsung Galaxy A21s

15,999

Oppo Find X2
Oppo Find X2

64,990

Motorola One Fusion Plus
Motorola One Fusion Plus

17,499

Samsung Galaxy A31
Samsung Galaxy A31

20,999

Samsung Galaxy M01
Samsung Galaxy M01

8,999

Samsung Galaxy M11
Samsung Galaxy M11

10,999

Infinix Hot 9 Pro
Infinix Hot 9 Pro

9,999

LG Velvet
LG Velvet

Price Not Available

Xiaomi Mi Note 10 Lite
Xiaomi Mi Note 10 Lite

Price Not Available

Apple iPhone SE 2020
Apple iPhone SE 2020

42,500

Honor 30 Pro
Honor 30 Pro

Price Not Available

Honor 30
Honor 30

Price Not Available

OnePlus 8
OnePlus 8

44,999

OnePlus 8 Pro
OnePlus 8 Pro

54,999

Xiaomi Redmi Note 9 Pro
Xiaomi Redmi Note 9 Pro

13,999

Motorola Moto E4
Motorola Moto E4

8,999

Samsung Galaxy On Max
Samsung Galaxy On Max

9,775

nubia N2
nubia N2

15,999

Karbonn K9 Kavach 4G
Karbonn K9 Kavach 4G

5,290

Motorola Moto C Plus
Motorola Moto C Plus

6,999

Best Sellers