T mobile security breach 201812/27/2023 Under the agreement, $350 million went to a settlement fund and $150 million went toward enhancing data security measures. The breach in August 2021 resulted in T-Mobile agreeing to pay $500 million to settle a class action lawsuit in July. Lapsus$ also breached T-Mobile’s internal systems in April 2022. Previous hacks involving T-Mobile include the theft of the details of 2 million customers in August 2018, a hack involving the theft of prepaid customer data in November 2019, the theft of employee and customer data in March 2021 and the theft of 48 million records in August 2021. The previously disclosed breach in January involved the theft of 37 million customer records, including personally identifiable information, that started on or around Nov. It’s another in a long list of T-Mobile data breaches. To the company’s credit, though, it adds that “while we have a number of safeguards in place to prevent unauthorized access such as this from happening, we recognize that we must continue to make improvements to stay ahead of bad actors.” In its letter, T-Mobile says twice that it takes these issues seriously, although that’s highly subjective given the company’s history of being hacked. There is no mention in the letter of T-Mobile contacting law enforcement or hiring a third-party forensics firm, which is typically seen in these circumstances, but the company probably already has a third-party firm at hand and the latest breach may have just been added to previous investigations. T-Mobile has reset the PINs of customers affected and is also offering them two years of free credit monitoring and identity theft services. No financial account information or call records were affected. The data stolen included full names, contact information, account numbers and associated phone numbers, T-Mobile account PINs, Social Security numbers, government IDs, dates of birth, balance due and internal codes used by T-Mobile to service customer accounts. In an April 28 letter to affected customers, first spotted by Bleeping Computer today, T-Mobile described the breach as an unauthorized activity involving a bad actor gaining access to information from a small number of customers between late February and March. The latest data breach was discovered in March and affected 836 customers. has disclosed yet-another data breach, its second disclosed breach in 2023, and although this one affected fewer than 1,000 customers versus the 37 million affected in the last breach, it’s the eighth data breach since 2018. T-Mobile said in a regulatory filing on Friday that while the investigation was ongoing, it was confident that it had "closed off the access.T-Mobile US Inc. "It appears that their IT system is particularly vulnerable since they haven't been able to rectify their known security issues during this time period, which should be concerning to customers." "T-mobile has had 6 other data breaches in the past 4 years," said Doug Schmidt, a professor of computer science at Vanderbilt University. In 2018, the company had informed about a potential security breach that could have affected about 3% of its 77 million customers. The wireless carrier is the latest victim of cyberattacks on large corporations in the United States as hackers exploit weakened user system privacy and security due to work-from-home policies instituted since the onset of the coronavirus pandemic. Some T-Mobile customers sued the company for damages late Thursday night in Seattle federal court, saying in a proposed class action that the cyberattack violated their privacy and exposed them to a higher risk of fraud and identity theft. The data includes addresses, dates of birth and phone numbers of customers, the company said, adding that it had no indication that the accessed data contained financial information such as credit card or other payment data. Federal Communications Commission (FCC) opened an investigation into the breach, T-Mobile revealed it had identified 5.3 million additional wireless subscribers who were impacted by the breach as well as 667,000 more accounts of former customers. In its latest update, which comes days after the U.S. wireless carrier had earlier this week said that personal data of more than 40 million former and prospective customers was stolen along with data from 7.8 million existing T-Mobile wireless customers.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |