In recent years, eSIMs have become an increasingly popular alternative to traditional physical SIM cards. Unlike the physical cards, which are inserted into devices, eSIMs are embedded in them and can be activated digitally by logging into an app or scanning a QR code. However, this modern technique has not completely eliminated the threat of cyber attacks.
Cybersecurity company ESET reports that cybercriminals can still target users’ mobile accounts by using stolen, forced, or leaked credentials. These criminals often use social engineering, phishing, and other deceptive strategies to break into user accounts and obtain the QR code needed to activate the eSIM on their own device. By stealing the victim’s phone number in this way, they can gain access to various services such as banking and messaging, leading to potential scams.
In 2023, a report from Russian cybersecurity company FACCT revealed an increase in SIM swapping as a result of the transition to eSIM technology. Cybercriminals targeted financial institutions after cloning eSIMs with over a hundred attempts recorded in a single institution to access customers’ personal accounts.
Being a victim of eSIM swapping can have serious consequences for security and privacy. Some threats include unauthorized access to personal accounts and financial losses. To protect against phone number theft, ESET specialists recommend being cautious of phishing scams as SIM swapping often relies on deceptive emails and messages. Being alert to suspicious contacts can prevent falling victim to these scams and protect personal information.
In conclusion, while eSIMs offer many benefits over traditional physical SIM cards such as convenience and flexibility in activating service digitally; they also come with their own set of risks that cannot be ignored. It is essential for users to take precautions against cyber attacks by being aware of phishing scams and suspicious contacts while using this modern technology.