I also read the vulnerability is limited to gaining your location. Anyone know if there’s a greater risk?
Watch the video. There are much greater risks than just finding your location.
I’m kind of leaning toward your position on this. The literature I’ve reviewed on the limited processors in SIM cards seems to show they have only very dumb processors with very limited RAM (like 8k to 64K of RAM) and rely on external computers to re-program their EEPROM memories. That does not bode well for them being able to send large amounts of data. For example most are limited to keeping only 99 names, addresses, and phone numbers from a contacts list. How then could it download, store, then execute a sophisticated program to takeover the sophisticated 64bit computer that is a modern cellular phone, much less process and resent gobs of data from that device at high enough of a data density to compromise much? We are talking an unsophisticated processor here that runs at a VERY slow rate of speed, just fast enough to handle a handshake and send out a device ID and make the connection required on a cellular connection.