How can researchers (and hackers) get access to a victim's call history and payment history? By manipulating it. They can text multiple people fake offers that seem too good to refuse, until one person calls back. Now they have a recently called number. If the call happens to be from a prepaid account, the hacker has hit the jackpot because they can go to a convenience store, buy a refill card for a few dollars and then use it to refill that victim's account. Now the hacker has payment history. The next step is to call the carrier and request a SIM swap.
FULL ARTICLE:
https://www.lightreading.com/new-sim-swap-hacks-highlight-carriers-wobbly-security/d/d-id/756780?
FULL ARTICLE:
https://www.lightreading.com/new-sim-swap-hacks-highlight-carriers-wobbly-security/d/d-id/756780?