Ginno Security Lab employees found that Simjacker is not the only dangerous exploit that is used by hackers to gain full control over victims’ SIM cards. They found another vulnerability called WIBattack.
Using WIBattack, you can remotely access the browser on almost any smartphone, and then infect the smartphone with malicious code sent using a special SMS message that contains instructions for further actions of the device. After a successful attack, the hacker gains control of the SIM card and the smartphone in which it is installed. This allows him to call and send messages to paid numbers, copy data, withdraw money, visit phishing sites, issue paid subscriptions and receive information about the location of the device. Hundreds of millions of smartphones worldwide are potentially vulnerable to this vulnerability.
Ginno Security Lab specialists reported their findings to the GSM Association, which is developing mobile communications technologies. It will not be known whether the vulnerability they have discovered will be fixed, because the technologies created three decades ago are used in cellular communications, they are long outdated, but there is nothing to replace them with.