Just two days ago, a mobile security company, Adaptive Mobile, which discovered the Simjacker attack, released a list of local mobile carriers shipping SIM cards that are vulnerable to Simjacker attacks. Country and region. The list includes 29 countries from five continents.
- North America: Mexico, Guatemala, Honduras, Costa Rica, Nicaragua, Belize, El Salvador, Dominican Republic, and Panama.
- South America: Peru, Colombia, Brazil, Ecuador, Chile, Argentina, Uruguay, and Paraguay.
- Africa: Nigeria, Ghana, Benin, Ivory Coast, and Cameroon.
- Europe: Italy, Bulgaria, and Cyprus.
- Asia: Saudi Arabia, Iraq, Palestine and Lebanon.
It is understood that the Simjacker attack was disclosed in mid-September. The attack uses a SIM card that comes with the pre-installed S@T Browser technology and Wireless Internet Browser (WIB). If the mobile operator forgets to configure the “security level” of the S@T browser application installed on the SIM card, then anyone can send a special format SMS to the user’s phone number and run malicious commands to track the location of user devices, send SMS messages, open browsers, etc. In addition, Adaptive Mobile also studied the WIB attack, which is similar to Simjacker, and the attack method is the same, but the WIB is mainly for the WIB application installed on the SIM card, not the S@T browser.
After testing, Adaptive Mobile said that the number of countries and mobile operators that were attacked by WIB vulnerabilities was much smaller than in countries and mobile operators that were attacked by Simjacker.