Attention smartphone users! A new type of phone scam is on the rise, and it exploits the latest technology: eSIMs.
eSIMs are digital SIM cards embedded in your phone, eliminating the need for a physical card. While convenient, they’ve opened a door for cybercriminals.
Hackers are now targeting eSIMs to steal phone numbers. They hack into your mobile account, likely using stolen passwords, and initiate a port request to transfer your number to a new eSIM in their device. This can be done by generating a QR code through your compromised account.
Once they have your number, they can access your online accounts, especially those using SMS two-factor authentication, like banks and messaging apps. This can lead to financial losses and even further scams where they impersonate you to trick others.
Experts warn that these attacks are becoming more common, with hundreds of attempts reported recently.
So how can you protect yourself?
- Use strong and unique passwords for your mobile carrier account.
- Enable two-factor authentication if available, especially for sensitive accounts like banking.
- Consider using physical security keys or authenticator apps for extra protection on crucial accounts.
By staying vigilant and taking these precautions, you can help prevent your phone number from becoming the key to a criminal’s scheme. Remember, if something seems suspicious about your phone account, contact your carrier immediately.
https://www.bleepingcomputer.com/news/security/sim-swappers-hijacking-phone-numbers-in-esim-attacks/
