:quality(75)/cloudfront-us-east-1.images.arcpublishing.com/elcomercio/BBNQJJJEXJEVPKBWNA6N25Z2GA.jpeg)
In recent years, cybercriminals have discovered new ways to steal users’ personal information through the use of eSIM technology. Unlike traditional physical SIM cards, eSIMs are chips embedded in devices that allow users to activate the service digitally by logging into an app or scanning a QR code. However, this modern technique does not prevent cybercriminals from targeting users and attempting to access their accounts.
According to cybersecurity company ESET, cybercriminals can access users’ mobile accounts by using stolen, forced, or leaked credentials. These cybercriminals often use social engineering, phishing, and other deceptive strategies to break into user accounts and obtain the QR code needed to activate the eSIM on their own device, effectively stealing the victim’s phone number.
In 2023, a report from the Russian cybersecurity company FACCT indicated an increase in SIM swapping as a result of the transition to eSIM technology. Cybercriminals targeted financial institutions after cloning eSIMs, with over a hundred attempts recorded in a single institution to access customers’ personal accounts. Being a victim of eSIM swapping can have serious consequences for security and privacy. Some threats include unauthorized access to personal accounts and the potential for financial losses.
To protect against phone number theft, ESET specialists recommend being cautious of phishing scams as SIM swapping often relies on deceptive emails and messages. Being alert to suspicious contacts can prevent falling victim to these scams and protect personal information. Additionally, it is important for individuals and businesses alike
