![]() Affected customers, which appears to not be many, have been sent letters informing them of the unauthorized activity that has taken place on their accounts. It was one of the biggest data breaches ever for a cell carrier, prompting the FCC to launch an investigation.Īs of now, T-Mobile has not publicly shared the news on their website. As mentioned, there was a massive data breach earlier this year in August that leaked data on nearly 50 million customers across both postpaid and prepaid accounts. T-Mobile doesn’t have the best track record when it comes to account security. Affected customers could have had both their private CPNI viewed as well as their SIM card swapped. ![]() ![]() The final category is simply both of the other two. The document says that customers affected by a SIM swap have now had that action reversed. This can, and often does, lead to the victim’s other online accounts being accessed via two-factor authentication codes sent to their phone number. This is where a malicious actor will change the physical SIM card associated with a phone number in order to obtain control of said number. The second category an affected customer might fall into is having their SIM swapped. That’s not great, but it’s much less of an impact than the breach back in August had, which leaked customer social security numbers. This information may include the billing account name, phone numbers, number of lines on the account, account numbers, and rate plan info. First, a customer may have only been affected by a leak of their CPNI. There is no further detail about what exactly happened, with the documents simply saying that some info was leaked.Īffected customers fall into one of three categories. It seems only a small subset of customers are affected. This time around, though, the damage appears to be much less severe. This comes just on the heels of a previous breach back in August. That activity was either the viewing of customer proprietary network information (CPNI), an active SIM swap by a malicious actor, or both. They state that there was “unauthorized activity” on some customer accounts. The news comes via internal documents shared with The T-Mo Report, embedded below. The disclosure of this sensitive information puts T-Mobile customers at substantial risk of identity theft and devastating financial fraud.T-Mobile just can’t catch a break lately when it comes to account security, as it seems there has been another small data breach this month. ![]() Other information compromised in the attack includes: This means that hackers can obtain more sensitive data, in addition to obtaining the tool that many use for two-factor authentication. SIM swapping fraud is when someone can convince a phone carrier that they are someone else and have that person’s phone number switched to their control. For the 7.8 million current customers, the hackers also obtained phone numbers, IMEI, and IMSI information, which puts those individuals at serious risk of SIM swapping fraud. Reliable reporting indicates that the T-Mobile breach affects 7.8 million current customers, 40 million former customers, and 850,000 active prepaid customers. The following day, T-Mobile officially announced that it suffered a cyberattack. Motherboard later confirmed that the information came from T-Mobile servers. News of a massive data breach began to make waves on Sunday, August 15, when reported that hackers posted on an underground forum claiming to have data of millions of individuals for sale. T-Mobile 2021 cyberattack affects nearly 50 million customers
0 Comments
Leave a Reply. |