I don’t know how you can say they can’t. The eSIM is just a number. An attacker can install it exactly the same way I did: I copy-pasted some numbers from an eSIM provider’s app.

I’m not talking about getting the number from the phone, but directly from the operator.