<ul><li>A flaw in O2's 4G Calling (VoLTE) service exposed user location data due to improper IMS standard implementation.</li><li>Researcher found O2's VoLTE service leaked sensitive info like IMSI, IMEI, and location data in network messages.</li><li>Detailed IMS signaling messages revealed caller's and recipient's IMSI, IMEI numbers, and recipient's location data, posing significant privacy risks.</li><li>Attacker could pinpoint an O2 customer's location within 100 square meters in dense areas; O2 advised to remove IMS/SIP headers to prevent data leaks.</li></ul>

4G Calling (VoLTE) flaw allowed to locate any O2 customer with a phone call

Discover more