Kigen Company Cyber Security Posture
kigen.comAt Kigen, we are making the future of securing connectivity simple. As simple as can be. Together with our partners and customers, we are unlocking new opportunities as (integrated) eSIM becomes the cornerstone of connected devices security. Our industry-leading SIM OS products enable over 2 billion SIMs. Our remote SIM provisioning and eSIM services drive this momentum further placing us amongst top 5 SIM vendors globally. Our 150 employees globally are guided by the vision of a world where every device can connect securely and reliably. For more information, go to kigen.com or speak to us here or on @KigenLtd on Twitter about #futureofSIM.
Kigen Company Details
kigen
159 employees
16657.0
517
Telecommunications
kigen.com
Scan still pending
KIG_6131789
In-progress
Kigen Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
Kigen Global Score.png)
Kigen Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
Kigen Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Kigen | Vulnerability | 100 | 5 | 7/2025 | KIG329071125 | Link | |
Rankiteo Explanation : Attack threatening the organization's existenceDescription: A critical vulnerability in eSIM technology, specifically targeting Java Card Virtual Machine implementation, allowed attackers to clone mobile subscriber profiles and hijack phone identities. This vulnerability affected over 2 billion SIMs, enabling attackers to intercept calls, SMS, and two-factor authentication codes undetected. The issue has been patched, but the potential impact was significant. | |||||||
Kigen Company Subsidiaries
At Kigen, we are making the future of securing connectivity simple. As simple as can be. Together with our partners and customers, we are unlocking new opportunities as (integrated) eSIM becomes the cornerstone of connected devices security. Our industry-leading SIM OS products enable over 2 billion SIMs. Our remote SIM provisioning and eSIM services drive this momentum further placing us amongst top 5 SIM vendors globally. Our 150 employees globally are guided by the vision of a world where every device can connect securely and reliably. For more information, go to kigen.com or speak to us here or on @KigenLtd on Twitter about #futureofSIM.
Access Data Using Our API
Get company history
Rapid.png)
Kigen Cyber Security News
New eSIM Hack Lets Attackers Clone Profiles and Hijack Phone Identities
A critical vulnerability in eSIM technology enables attackers to clone mobile subscriber profiles and hijack phone identities.
New eSIM Hack Allows Attackers to Clone Your eSIM Profile
A critical vulnerability has been identified in the GSMA TS.48 Generic Test Profile versions 6.0 and earlier, which are widely used.
Kigen Is First Site to Achieve Full GSMA SAS-SM Accreditation for eSIM IoT Remote Manager (eIM)
This certification and leading IoT modules with โSecure with Kigenโ promise, highlight Kigen's commitment to supporting IoT manufacturersย ...
Business Reporter and Kigen: The next wave of AI innovation needs your business data
Vincent Korstanje, the CEO of Kigen, spotlights for business leaders that ongoing investments in cybersecurity at the edge with integrated SIM and eSIM.
Neue, Kigen Lead the No-Code Revolution for Connected Products
This partnership sets the stage for developing a wide array of new connected products and services, from smart devices to industrial IoTย ...
ChatGPT and IoT Security: What is the Future?
ChatGPT may also lead to improved IoT security in the future. Surprisingly to many, the technology behind ChatGPT is not new.
Kigen Similar Companies
SFR
SFR is the number one alternative telecoms operator in France. SFR is also an operator providing a comprehensive range of services meeting the expectations of private and business customers alike, offering them the best of the digital world. At year-end 2011, the total number of mobile customers was
Orange Polska
Orange Polska is the principal supplier of telecommunications services in Poland. Orange Polska provides services, including fixed-line voice telecommunications, voice mail, fixed access to the Internet and Voice over Internet Protocol (โVoIPโ). Orange Polska provides telecommunications servic
Telefรณnica
Telefรณnica is today one of the largest telecommunications companies in the world in terms of market capitalisation and number of customers. We have the best infrastructure, as well as an innovative range of digital and data services; therefore, we are favorably positioned to meet the needs of our cu
Rostelecom
ะะะ ยซะ ะพััะตะปะตะบะพะผยป (www.rostelecom.ru) โ ะพะดะฝะฐ ะธะท ะบััะฟะฝะตะนัะธั ะฒ ะ ะพััะธะธ ะธ ะะฒัะพะฟะต ัะตะปะตะบะพะผะผัะฝะธะบะฐัะธะพะฝะฝัั ะบะพะผะฟะฐะฝะธะน ะฝะฐัะธะพะฝะฐะปัะฝะพะณะพ ะผะฐัััะฐะฑะฐ, ะฟัะธัััััะฒัััะฐั ะฒะพ ะฒัะตั ัะตะณะผะตะฝัะฐั ััะฝะบะฐ ััะปัะณ ัะฒัะทะธ ะธ ะพั ะฒะฐััะฒะฐััะฐั ะผะธะปะปะธะพะฝั ะดะพะผะพั ะพะทัะนััะฒ ะฒ ะ ะพััะธะธ. ะะพะผะฟะฐะฝะธั ะทะฐะฝะธะผะฐะตั ะปะธะดะธััััะตะต ะฟะพะปะพะถะตะฝะธะต ะฝะฐ ัะพััะธะนัะบะพะผ ััะฝะบะต ััะปัะณ ะจะ
Globe Telecom
Globe is a leading full-service telecommunications company in the Philippines and publicly listed in the PSE with the stock symbol GLO. The company serves the telecommunications and technology needs of consumers and businesses across an entire suite of products and services including mobile, fixed,
e& UAE
(Formerly etisalat UAE) For more than four decades, we have connected people and now weโรรดve evolved to become the digital telco of the future. Our mission is to grow, transform and excel as the regionโรรดs technology leader while enhancing digital customer experience and operation agility. e& UAE
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Kigen CyberSecurity History Information
How many cyber incidents has Kigen faced?
Total Incidents: According to Rankiteo, Kigen has faced 1 incident in the past.
What types of cybersecurity incidents have occurred at Kigen?
Incident Types: The types of cybersecurity incidents that have occurred incident Vulnerability.
How does Kigen detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through containment measures with Security patches deployed, test profiles shut down and remediation measures with Type safety checks implemented, security bulletin issued.
Incident Details
Can you provide details on each incident?
Incident : Vulnerability Exploitation
Title: Critical Vulnerability in eSIM Technology Enables Phone Identity Hijacking
Description: A critical vulnerability in eSIM technology enables attackers to clone mobile subscriber profiles and hijack phone identities. AG Security Research revealed they broke the security of Kigen eUICC cards with GSMA consumer certificates, marking what they claim is the first successful public hack against consumer GSMA eUICC and EAL-certified GSMA security chips. The research team extracted private ECC keys from compromised eUICC cards and demonstrated the ability to download eSIM profiles from major mobile network operators in cleartext format.
Type: Vulnerability Exploitation
Attack Vector: Java Card Virtual Machine implementation flaws
Vulnerability Exploited: Type confusion vulnerabilities in Java Card
Motivation: Unauthorized access to eSIM profiles
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through OTA channels or physical access.
Impact of the Incidents
What was the impact of each incident?
Incident : Vulnerability Exploitation KIG329071125
Data Compromised: eSIM profiles, private ECC keys
Systems Affected: Kigen eUICC cards
Brand Reputation Impact: Significant
Identity Theft Risk: High
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Private ECC keys and eSIM profiles.
Which entities were affected by each incident?
Incident : Vulnerability Exploitation KIG329071125
Entity Type: Company
Industry: Telecommunications
Customers Affected: Major mobile network operators including AT&T, Vodafone, O2, Orange, and T-Mobile
Response to the Incidents
What measures were taken in response to each incident?
Incident : Vulnerability Exploitation KIG329071125
Containment Measures: Security patches deployed, test profiles shut down
Remediation Measures: Type safety checks implemented, security bulletin issued
Data Breach Information
What type of data was compromised in each breach?
Incident : Vulnerability Exploitation KIG329071125
Type of Data Compromised: Private ECC keys, eSIM profiles
Sensitivity of Data: High
What measures does the company take to prevent data exfiltration?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Type safety checks implemented, security bulletin issued.
How does the company handle incidents involving personally identifiable information (PII)?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through were Security patches deployed and test profiles shut down.
Lessons Learned and Recommendations
What lessons were learned from each incident?
Incident : Vulnerability Exploitation KIG329071125
Lessons Learned: The importance of robust security measures in eSIM technology and the need for continuous monitoring and updates.
What recommendations were made to prevent future incidents?
Incident : Vulnerability Exploitation KIG329071125
Recommendations: Implement strong security checks, update security specifications, and ensure timely patching of vulnerabilities.
What are the key lessons learned from past incidents?
Key Lessons Learned: The key lessons learned from past incidents are The importance of robust security measures in eSIM technology and the need for continuous monitoring and updates.
What recommendations has the company implemented to improve cybersecurity?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Implement strong security checks, update security specifications, and ensure timely patching of vulnerabilities..
References
Where can I find more information about each incident?
Incident : Vulnerability Exploitation KIG329071125
Source: AG Security Research
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: AG Security Research.
Initial Access Broker
How did the initial access broker gain entry for each incident?
Incident : Vulnerability Exploitation KIG329071125
Entry Point: OTA channels or physical access
High Value Targets: eSIM profiles
Data Sold on Dark Web: eSIM profiles
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident?
Incident : Vulnerability Exploitation KIG329071125
Root Causes: Java Card Virtual Machine implementation flaws
Corrective Actions: Implement type safety checks, update security specifications, and distribute patches
What corrective actions has the company taken based on post-incident analysis?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Implement type safety checks, update security specifications, and distribute patches.
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were eSIM profiles and private ECC keys.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident was Kigen eUICC cards.
Response to the Incidents
What containment measures were taken in the most recent incident?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Security patches deployed and test profiles shut down.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were eSIM profiles and private ECC keys.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was The importance of robust security measures in eSIM technology and the need for continuous monitoring and updates.
What was the most significant recommendation implemented to improve cybersecurity?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Implement strong security checks, update security specifications, and ensure timely patching of vulnerabilities..
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident is AG Security Research.
Initial Access Broker
What was the most recent entry point used by an initial access broker?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an OTA channels or physical access.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
