Memos have also been placed on those affected accounts for reps to see when accessing them. Affected customers, which appears to not be many, have been sent letters informing them of the unauthorized activity that has taken place on their accounts. It was one of the biggest data breaches ever for a cell carrier, prompting the FCC to launch an investigation.Īs of now, T-Mobile has not publicly shared the news on their website. As mentioned, there was a massive data breach earlier this year in August that leaked data on nearly 50 million customers across both postpaid and prepaid accounts. T-Mobile doesn’t have the best track record when it comes to account security. Affected customers could have had both their private CPNI viewed as well as their SIM card swapped. The final category is simply both of the other two. The document says that customers affected by a SIM swap have now had that action reversed. This can, and often does, lead to the victim’s other online accounts being accessed via two-factor authentication codes sent to their phone number. This is where a malicious actor will change the physical SIM card associated with a phone number in order to obtain control of said number. The second category an affected customer might fall into is having their SIM swapped. That’s not great, but it’s much less of an impact than the breach back in August had, which leaked customer social security numbers. This information may include the billing account name, phone numbers, number of lines on the account, account numbers, and rate plan info. First, a customer may have only been affected by a leak of their CPNI. There is no further detail about what exactly happened, with the documents simply saying that some info was leaked.Īffected customers fall into one of three categories. It seems only a small subset of customers are affected. Now, T-Mobile has confirmed that for the 7.8 million on-contract, or postpaid, customers it already counted in the breach, data stolen includes the information mentioned Thursday (first and last. This time around, though, the damage appears to be much less severe. This comes just on the heels of a previous breach back in August. That activity was either the viewing of customer proprietary network information (CPNI), an active SIM swap by a malicious actor, or both. They state that there was “unauthorized activity” on some customer accounts. The news comes via internal documents shared with The T-Mo Report, embedded below. T-Mobile was previously the target of an unrelated data breach in August 2021.T-Mobile just can’t catch a break lately when it comes to account security, as it seems there has been another small data breach this month. T-Mobile announced the breach on its website and said the company will be contacting affected customers. While the impact of this breach is currently undetermined, the company believes that no passwords, payment card information, social security numbers, or other financial account information were accessed.Ĭonsumers are encouraged to remain vigilant for suspicious emails, texts, or phone calls in the wake of this data breach. 25, 2022, and January 5, 2023, and may have exposed information including names, billing addresses, email addresses, telephone numbers, dates of birth, T-Mobile account number, number of lines on the account, and service plan features. T-Mobile reports that the breach happened between Nov. The alert provides information on responding to a data breach after T-Mobile confirmed the company suffered a breach that affects approximately 37 million U.S. (WILX) - A consumer alert has been reissued by Michigan Attorney General Dana Nessel.
0 Comments
Leave a Reply. |