:quality(75)/cloudfront-us-east-1.images.arcpublishing.com/elcomercio/BBNQJJJEXJEVPKBWNA6N25Z2GA.jpeg)
eSIM technology is a modern way of activating mobile services through a digital chip embedded in the device. Unlike traditional physical SIM cards, users can log into an app or scan a QR code to activate their service. However, while this technique may be more advanced, it does not prevent cybercriminals from exploiting vulnerabilities. These criminals are constantly updating their methods to obtain access codes and two-factor authentication for services like banking and messaging, creating opportunities for scams to be carried out.
Cybercriminals can access users’ mobile accounts using stolen, coerced, or leaked credentials through social engineering, phishing, or other deceptive methods. By obtaining the QR code that activates the eSIM on their own device, they effectively hijack the victim’s number, leading to various security breaches. In 2023, SIM swapping incidents increased as a result of the transition to eSIM technology. Attacks were aimed at accessing personal accounts in online services, particularly at financial institutions, after eSIM cloning. Victims of eSIM swapping face serious security and privacy risks as a result of these attacks.
To protect against phone number theft and eSIM swapping, ESET specialists recommend being cautious with phishing scams such as suspicious emails and messages. It is important to stay vigilant and avoid interactions with unfamiliar or suspicious contacts to mitigate these threats. Additionally, it is recommended that users enable two-factor authentication for all their mobile accounts and regularly monitor their account activity for any suspicious behavior. By taking these precautions
:quality(75)/cloudfront-us-east-1.images.arcpublishing.com/elcomercio/JZMGDH5GFBBDPMYRLZLPOGGHOI.jpg)