(see original release here)
June 4, 2021
Ericsson is offering the cloud-native product Packet Core Gateway, which is part of the Ericsson’s dual-mode 5G Core solution, for pentesting at a virtual security research event called 5G Cyber Security Hack. This public event organized by Finnish Transport and Communications Agency Traficom, Finnish National Cyber Security Centre under Traficom and National Emergency Supply Agency brings together top cyber security professionals and leading edge 5G technologies– all aiming to further safeguard the digital society.
The 5G technology is designed with security built in from the start to safeguard new business and mission critical use cases, which is paramount when protecting personal data and business-sensitive information.
Telecommunication networks are evolving rapidly across a broad technological environment which includes virtualization, IoT and Industry 4.0. This is met by an equally broad yet deteriorating cybersecurity environment. With this development in mind, the Finnish Transport and Communications Agency, called Traficom, has initiated the 5G Cyber Security Hack event.
For Ericsson, the key benefit for joining the 5G Cyber Security Hack is to engage with the security community embracing the opportunity of having some of the world’s leading hackers putting their skills at test on our 5G solution.
The first 5G Cyber Security Hack, organized by Finnish Transport and Communications Agency Traficom and Finnish National Cyber Security Centre in Oulu, Finland in 2019, was a successful event. Now the story continues with a virtual hack, scheduled to be held around the clock under the midnight sun, June 18-20, 2021.
Mikko Karikytö, Ericsson Chief Product Security Officer, says: “Our challenge at the Hack offers a unique opportunity to go beyond the 5G radio interface to the backbone of the mobile 5G core infrastructure. It is expected that the participants of the challenge are well versed in network fuzzing enabling to be able to challenge the robustness of the Packet Core Gateway.”
The participants of the challenge will have access to the 3GPP interfaces along with the Operational and Maintenance interface of this cloud native product. The challenge will utilize the black-box, grey-box, and white-box approach, and more information about the product will be shared with the participants of the challenge as the event progresses. Ericsson will award monetary prizes for identified vulnerabilities and security issues in the product.
The event website: https://5gcyberhack.fi/
Registration for the event is open until June 6, 2021.