T-Mobile and its subsidiary MetroPCS today disclosed a recent incident where hackers gained "unauthorized access to certain information" of its customers, which the companies have already reported to the police and shut down. The security breach occurred earlier this week on Monday, August 20, and affected two million customers (via Motherboard).
T-Mobile promises that no financial data, credit card information, social security numbers, or passwords were compromised in the breach. However, "some of your personal information may have been exposed," the company states in the letter shared online, including one or more of the following: name, billing zip code, phone number, email address, account number, and account type (prepaid or postpaid).
A T-Mobile spokesperson says that the security breach affected "slightly less than" three percent of its 77 million customers, but did not reference a specific number. The incident reportedly happened "early in the morning" on August 20, and was perpetrated by hackers part of "an international group" that accessed T-Mobile servers through an API that "didn't contain any financial data or other very sensitive data."
The intrusion was discovered by T-Mobile's cybersecurity team the same day:
“We found it quickly and shut it down very fast,” the spokesperson said.
The spokesperson said she couldn’t give “specifics” of the attack and did not know whether the hackers were criminals or part of a government.
T-Mobile is reaching out to victims directly via text message to notify them, she said.
T-Mobile is now reaching out to notify all affected customers, and "if you don't receive a notification then that means your account was not among those impacted by this incident." The breach occurred less than a week after T-Mobile announced its new customer service initiative "Team of Experts."
Top Rated Comments
I hope whoever steals my identity enjoys the student loan debt!
Here is how that would work:
* The news are out that T-Mobile servers have been compromised, and that a small fraction of subscribers will receive an email warning them that they may have been the target.
* You receive such email. The email appears to be authentic; but it is not and yet it appears crafted by T-Mobile Customer Service.
* It includes within the email body an embedded URL requesting you, the recipient, to click and login onto your T-Mobile account, and "change your password".
* The URL is fake, and points to hackers' backend servers.
* Unaware, you click and "login" with your login credentials.
* Presto, your credentials are now on the wild, and you have given the hackers a free pass to your T-Mobiel account, and posible financial information.
Never click on embedded URLs within the body of emails.
Decentralize the customer information so they have direct access.
That wau when a hacker comes around, it’s not just one or two targets with MILLIONS of person info, instead they would need to target one person at a time