{"id":271,"date":"2025-03-26T01:23:49","date_gmt":"2025-03-26T01:23:49","guid":{"rendered":"https:\/\/hkg01.com\/?p=271"},"modified":"2025-03-26T01:28:13","modified_gmt":"2025-03-26T01:28:13","slug":"hackers-use-spyware-to-track-sim-cards","status":"publish","type":"post","link":"https:\/\/hkg01.com\/index.php\/2025\/03\/26\/hackers-use-spyware-to-track-sim-cards\/","title":{"rendered":"Hackers Use Spyware to Track SIM Cards"},"content":{"rendered":"\n

Telecom security researchers identify \u2018Simjacker\u2019 spyware, used to track SIM cards in Mexico, Colombia and Peru<\/p>\n\n\n\n

Hackers are exploiting a vulnerability in software embedded in the SIM cards of hundreds of millions of phones to track users\u2019 whereabouts\u2014a novel form of spyware targeting one of the most important bits of hardware in a mobile device.<\/p>\n\n\n\n

AdaptiveMobile Security, a Dublin-based telecommunications-security company, said it found the technique has been used for at least two years by hackers tracking phones in Mexico, Colombia and Peru. It said the vulnerability exists, however, in SIM cards in use across a much larger swath of the world.<\/p>\n\n\n\n

\u201cIt\u2019s the most sophisticated attack I\u2019ve ever seen over these networks,\u201d said Cathal McDaid, the company\u2019s chief technology officer.<\/p>\n\n\n\n

The technique, nicknamed \u201cSimjacker\u201d by the researchers, targets the latest in a series of vulnerabilities hackers have found to track the location of a phone without its user\u2019s knowledge. Attacks targeting phones often involve some form of phishing, in which a victim clicks a link and inadvertently downloads malware that carries out commands for an attacker, like relaying location data.<\/p>\n\n\n\n

In the case of Simjacker, hackers have managed to exploit a relatively old form of software found on some SIM cards that mobile operators have used in the past to send customers billing information or special offers. Essentially, hackers send secret text messages to particular SIM cards, which then send back information like the phone\u2019s location.<\/p>\n\n\n\n

Phones vulnerable to the hack number in the hundreds of millions across some 30 countries in South America, Africa and parts of Europe and the Middle East, AdaptiveMobile says, though it has so far only identified cases in the three Latin American countries. The total number of affected phones in those countries isn\u2019t known, but the company said over a one-week period last month, it identified hundreds of phones being tracked with the technique.<\/p>\n\n\n\n

The GSM Association, a trade body of mobile network operators, said it had sent out recommendations to carriers for identifying and patching the vulnerability, which it said affected a \u201cminority of SIM cards\u201d around the world. The GSMA \u201chas been working with the impacted member operators to help implement these mitigations,\u201d it said.<\/p>\n\n\n\n