SS7 Security of Singapore

Country Mobile Network Worldwide Rank 99 / 164

Tweet about Singapore SS7 security:


Scores for 3 operators surveyed

[+] Show all details [-] Hide all details
+ Global Risk level 99 / 164
2118.9

Singapore is the 99th best country in the world for SS7 security.

Global Risk level combines Privacy Leaks (subscriber informations leaks) and Network Exposure (operators exposure), giving more importance to Privacy Leaks.

+ Privacy Risk level 93 / 164
1356.1

Singapore is the 93rd best country to protect its customers against privacy leaks.

Privacy Leaks represents all subscriber privacy leaks from all operators of specific country. This includes subscribers location, subscriber private data and subscriber encryption keys.

+ SS7 messages disclosing subscriber city location 9

Singapore allows 9 SS7 MAP messages to leak subscriber city location.

+ SS7 messages disclosing subscriber street location 5

Singapore allows 5 SS7 MAP messages to leak precise street-level subscriber location (200m).

+ SS7 messages disclosing private informations 9

Singapore allows 9 SS7 MAP messages to leak subscriber IMSI.

+ Leak of subscriber keys 1

Singapore has 1 operators that leak subscriber keys.

Leak of subscriber keys allows an attacker to decrypt calls and SMS of subscriber, by impersonating the network using a fake base station.

+ Leak of prepaid/postpaid status 2

Singapore has 2 operators that leak subscriber prepaid/postpaid status.

Leak of subscriber prepaid/postpaid status allows an attacker to gather informations about the status of a subscriber from the operators databases, to prepare for fraud.

+ Leak subscriber location through Home Routing bypass ?
+ Network Exposure level 145 / 164
1694.9

Singapore is the 145th best protected SS7 network in the world.

Network Exposure includes Network Elements exposed and security mechanism implemented by operators of a given country. It shows the attack surface of the Telecom Network of a country from the SS7 perspective.

+ SCCP discovery attack surface 112

Singapore has 112 Core Network Elements identified over SS7 SCCP.

The more Core Network Elements are exposed (reachable directly from the International SS7 Network), the more entry points an attacker has on operators SS7 Core Network.

+ Network Elements fingerprint 112

Singapore has 112 Core Network Elements successfully fingerprinted over SS7 SCCP.

Precise identification of Core Network Elements allows attackers to have a better understanding of the internals of operators networks, allowing easier further attacks.

+ Potential change of prepaid/postpaid status (fraud) 2

Singapore has 2 operators susceptible to fraud via change of prepaid/postpaid status.

+ Home Routing* 3

Singapore has 3 operators implementing Home Routing.

Home Routing is a Operator Network feature that hides the MSC (city location) and IMSI of the subscriber in several SS7 MAP messages.

*Home Routing detection in SS7map is still in BETA phase.

+ Leak of internal topology through Home Routing bypass ?

For more explanations about the ratings, see our blog post.


Operators tested
0 well secured
0 with medium security
3 badly secured
3 surveyed operator / 3 operators

SS7map project is research in progress: the data is purely indicative and subject to change.