T-Mobile suffered a second security breach in less than 18 months. The carrier has revealed that a hacker stole data, including names, birthdates and phone numbers, from 37 million customer accounts.
The “bad actor” was initially found to get the data on January 5, and the carrier plugged the hole with the help of outside cybersecurity experts by the next day.
According to the telecommunications company, there was no evidence that its security systems were compromised and the mechanism used by the hacker did not reveal more sensitive data such as social security numbers, government identification numbers, passwords or credit card information. payment.
The information exposed included names, billing and email addresses, phone numbers, dates of birth, T-Mobile account numbers, and plan and subscription information. However, not all accounts had the full list of leaked data. The carrier is notifying affected parties in accordance with state and federal requirements.
Just a year and a half ago, in August 2021, data from nearly 77 million T-Mobile accounts was leaked and, back then, that included SSN and driver ID. Following a lawsuit, the company was ordered to pay $350 million to resolve customer complaints and invest an additional $150 million to improve its cybersecurity practices and technologies. In the latest filing, T-Mobile revealed that it has “made substantial progress to date” on those updates.
Start a new Thread