"Most of the issues with GTP protocol relate to roaming networks because operators use a 'friendly' model – which assumes all of the users accessing their networks as legitimate and authorised and that attackers will not appear in their network," Novikov explained.
Since there are no threat actors looking to monitor or disrupt cellular comms, that seems like a perfectly reasonable security posture. Ditto for continuing to rely on SS7.