Need help, the vulnerability of esim this bad?

Help me out here please. Is this just FUD???

I have tried to research this out and as usual only find vague answers or nothing at all but a couple of places online.

I have an opportunity to get a new pixel 9 brand new for a decent price that takes a regular sim card.

I had my mind set on the pixel 10, now I’m not sure.

I know one day I may not have a choice but right now I technically do. Because technically I don’t have the money for the pixel 9 and was just going to get a pixel 10 when my finances got better.

I found it most concerning, according to the youtuber the esim has the ability to get deeper into the phone for a complete take over.

The other concern is the nature of esims being all in one place in a cloud somewhere that allegedly could be hacked and get all kinds of data.

I really am sorry if this has been discussed already.

I don’t see that being stated, only the reverse: that a local system compromise can be used to steal the eSIM profile via software channels.

Even physical SIM cards have their own issues; a SIM-swap attack can still be used to steal a phone number by having it transferred to a different device.

One potential solution is to not have your phone number or any other identity tied to your SIM, physical or not, by using a VoIP service.

No matter what kind of SIM card you use, there are still fundamental security flaws with the cellular network that you might want to avoid.

Thank you for the video.

I do understand both have drawbacks.

For now I’ll take my chances with having a physical sim card. Just based on personal hunches and the obvious there’s a lot more involved processes and so on that’s seem to open up a can of worms with esims. That’s my personal opinion based on what I see.

Maybe one day I won’t have a choice, but for now I’m going to get another pixel 9 series so I have some choices.

I have a second android I was wanting to use a second number on, but it’s outdated, full of Google and Facebook stuff and painfully slow and unreliable. I can’t even use the auditor app to check my phone.

I have not watched the videos so sorry about that but here my views about sim cards:

Jmp.chat protects you from local attacks like stringrays, SMS is still being used by businesses to verify you so have to use a SMS thingy anyhow. Also jmp.chat doesn’t ask for kyc.

Gl inet mudiv2 + 9esim adapter + silent.link can get you internet without KYC then you can use signal for eg.

These are the graphics taken from here on how esims work:

367835446-30bb39db-5c26-4c9c-b46e-1a01452525bf1935×1081 363 KB

374897409-837164db-3ade-431b-a16f-53724a9b87b01822×1658 186 KB

376275364-b8b69571-2d4e-4e80-850a-b5e8674343491874×1440 252 KB

You may find these links interesting:

Will watch the video later, for now from personal experience I would go for physical sim card. 1.Easier to manipulate. 2. Recently discovered that an esim is immune to hard reset, now wondering what other extraterrestrial abilities does it have?

Definitely data only. For a number - above tips are solid, using jmp over a year so far very satisfied. There is also an interesting alternative that I found here in PG, Can’t remember the company name, something like mobvoid maybe. It’s a mobile proxy service, I have not researched it yet but at first glance looks interesting.

Yes, I have spent hours researching esim vs physical sims.

My approach to researching many given subjects is I hyper focus and look at many articles, hear opinions and try to see elephants in the room.

It’s time consuming, but how I function I need a lot of data to jumble in my head to come to a decision or a best up to date conclusion. The problem I find most often is a lot of vague stuff with nuggets of truth that is scattered all over the internet with no distinction of a yes or no answer. Doesn’t mean I am always right, but I need a certain level of confidence to make a personal decision on moving forward with a given process. Also, I will try to mind how I talk and let people know this is just my thoughts and not a statement of fact.

I had the funds to get a Pixel 10 and almost got it. But after my personal research and forming my own opinion, no way. I went for an older pixel till I can learn more.

This is just my opinion, views and thoughts not statements of facts. Regardless of how I word the following.

My findings:

The Elephant in the room: An esim is held in servers on a cloud. Then there’s the more intimate integration into the hardware. Both of which in my opinion is a future vulnerability. No one can tell me those cloud servers can’t be hacked or leak data.

My other off shoot findings and thoughts:

Social engineering in my opinion is at play here. It seems we’re being lulled into a new system with promises of convenience and security compared to those dirty, outdated, carbon foot printing hope it doesn’t get stolen plastic sim cards.

On top of that, manufacturers seem intent on getting rid of sim card trays for that extra little kick in the rear to herd the masses into this new setup.

Some of spoke to at my carrier were beating their chest about how much experience they have in the industry. No, they are merely repeating the party line not even acknowledging my concerns. They literally shut down when I talk about the elephant in the room.

It’s like the movie Idiocrisy. “But it has electrolytes!” Translation - “But it’s more secure!” They completely over looked what was talking about.

So based on my maybe non factual opinion and yes, the good ole hunches, I am going to do my best to stay away from esim technology.

For the record, I understand physical sims have their flaws, I am merely choosing what is in my opinion the lesser of 2 evils and would at least like a choice to use either or instead of being shoved down my phone.

P.S. I noticed I sent this as a response. This is not to flame any individual on the forum. I just talking “In general”.

Thanks for the reply and links. That’s sure is disheartening about India.

I also appreciate the graphs. My threat level isn’t all that high. The more I am learning the more I realized I’m being to hard core when there is no need to.

I have no value or much in my bank account. I’m just another unimportant number in the system, which is fine.

I am just tired of my data being sold and being profiled.

We don’t know where certain countries are going to land and seemingly innocent stuff now can suddenly be a thought crime in the future.

So yeah, I am a phone addict and would like to protect my connection and data as best I can.

I’m not an expert in this matter, but I don’t think this is an eSIM only problem.
Physical SIM has this problem too, storing info on a cloud.

Recently, a few months ago SKT (SK Telecom), which is one of the largest Internet service provider in South Korea, had a huge data breach and leaked bunch of SIM related data, including physical SIM.
Attackers could easily clone SKT user’s SIM using these data.
So every people had to change to a new physical SIM card or eSIM.

So I don’t think “data stored in a cloud” is an strictly eSIM problem.

https://www.reuters.com/sustainability/boards-policy-regulation/sk-telecom-shares-plunge-after-data-breach-due-cyberattack-2025-04-28/

Thank you!

Just to be clear, I am more than willing to keep researching and am. Any new data I can learn for or against my current conclusions.

I tried looking anything up I could. And this is definitely a topic I will continue to research. The will come I won’t have much of a choice.

If it turns out I can feel comfortable getting an esim, great!

In the US, banks typically won’t work with VoIP numbers.

Which is why I said “potential” solution.