Re:So what are these STK instructions? (Score 1)

Here is the spec:
https://portal.3gpp.org/deskto...

Section 9 Call control and MO SMS control by SIM

Btw if i understand things correctly it is not a new exploit... the spec explicitly allows for this...
The problem is that the spec allows different levels of security. From only accepting cryptographically signed messages ... to accepting any message.
Apparently some operators out of laziness accept unsigned messages on their SIM cards.

Here is a report about one operator in my home country admitting they were targeted in 2017 and money was stolen from their customer:
https://smex.org/vulnerability...