Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
T-Mobile SIM Cloned
6 points by spacebacon on Nov 4, 2023 | hide | past | favorite | 9 comments
Heads up, my T-mobile users. My SIM has been cloned and there is a 30min customer care wait. Potential breach.


Post was modified to ", my"... I did not perform the edit. This references a specific comment i've made in the past to one individual.


Is your SIM an eSIM? Are eSIMs inherently more secure? Genuinely curious.


eSIM vs physical SIM doesn't matter - nobody does actual "SIM cloning", and if they did, the impact on the network would be "undefined behavior" so it's unlikely to work (as in hijack calls/messages from the victim) even if you could actually duplicate a SIM.

What happens in these attacks is that the attackers convince/bribe the monkey working in customer "support" to reissue a new (e?)SIM for the victim's account.


Ok so it’s more of a social engineering issue then, it sounded more like a flaw in the SIM tech at first.


Thanks for adding actual value to this post.


Actually wasn't a SIM clone. My bad. I did find an odd profile with imazing that showed up as a warning. Post can be deleted.


So dramatic :) That said, thanks for the update... as a tmobile customer and it's history of loosing data, it's nice to have the clarity.


My apologies for any jump scares.


OW2




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: