Kigen eSIM vulnerability lets attackers clone and spy on billions of profiles.

Security Exploration researchers in Poland have exploited a GSMA test-profile gap and an insufficient bytecode verification in Kigen’s eUICC Java Card VM to extract decryption keys and eSIM profiles. This flaw permits cloning, spoofing, and over-the-air or physical interception of subscriber credentials from carriers including AT&T, Vodafone, T-Mobile, and China Mobile. Affecting over two billion eSIMs worldwide, the findings emphasize the need for robust bytecode validation, runtime integrity checks, and enhanced hardware encryption to secure embedded SIM implementations.

Read more:

https://cybernews.com/security/billions-of-esim-cards-vulnerable-to-cloning/