Simjacker attack exploited in the wild to track users for at least two years

Security researchers have disclosed today an SMS-based attack method being abused in the real world by a surveillance vendor to track and monitor individuals.

“We are quite confident that this exploit has been developed by a specific private company that works with governments to monitor individuals,” security researchers from AdaptiveMobile Security said in a report released today.

“We believe this vulnerability has been exploited for at least the last 2 years by a highly sophisticated threat actor in multiple countries, primarily for the purposes of surveillance.”

Researchers described this attack as “a huge jump in complexity and sophistication” compared to attacks previously seen over mobile networks and “a considerable escalation in the skillset and abilities of attackers.”

Read more…
Source: ZDNet