Security News > 2021 > June > Security Flaw Found in 2G Mobile Data Encryption Standard
Cybersecurity researchers in Europe say they have discovered a flaw in an encryption algorithm used by cellphones that may have allowed attackers to eavesdrop on some data traffic for more than two decades.
In a paper published Wednesday, researchers from Germany, France and Norway said the flaw affects the GPRS - or 2G - mobile data standard.
While most phones now use 4G or even 5G standards, GPRS remains a fallback for data connections in some countries.
The vulnerability in the GEA-1 algorithm is unlikely to have been an accident, the researchers said.
Instead, it was probably created intentionally to provide law enforcement agencies with a "Backdoor" and comply with laws restricting the export of strong encryption tools.
Cellphone manufacturers and standards organizations have been notified to fix the flaw, they said.