T-Mobile and its subsidiary MetroPCS today disclosed a recent incident where hackers gained "unauthorized access to certain information" of its customers, which the companies have already reported to the police and shut down. The security breach occurred earlier this week on Monday, August 20, and affected two million customers (via Motherboard).

iphone x t mobile
T-Mobile promises that no financial data, credit card information, social security numbers, or passwords were compromised in the breach. However, "some of your personal information may have been exposed," the company states in the letter shared online, including one or more of the following: name, billing zip code, phone number, email address, account number, and account type (prepaid or postpaid).

A T-Mobile spokesperson says that the security breach affected "slightly less than" three percent of its 77 million customers, but did not reference a specific number. The incident reportedly happened "early in the morning" on August 20, and was perpetrated by hackers part of "an international group" that accessed T-Mobile servers through an API that "didn't contain any financial data or other very sensitive data."

The intrusion was discovered by T-Mobile's cybersecurity team the same day:

“We found it quickly and shut it down very fast,” the spokesperson said.

The spokesperson said she couldn’t give “specifics” of the attack and did not know whether the hackers were criminals or part of a government.

T-Mobile is reaching out to victims directly via text message to notify them, she said.

T-Mobile is now reaching out to notify all affected customers, and "if you don't receive a notification then that means your account was not among those impacted by this incident." The breach occurred less than a week after T-Mobile announced its new customer service initiative "Team of Experts."

Top Rated Comments

gsmornot Avatar
45 months ago
Here’s a great idea, stop centralizing databases.

Decentralize the customer information so they have direct access.

That wau when a hacker comes around, it’s not just one or two targets with MILLIONS of person info, instead they would need to target one person at a time
Not being a physical asset this would not apply. If you can see the records from a single machine it does not matter where they are stored. It would not make sense to have multiple systems for customer data, the agents alone would take a lot of time trying to find the user. So, option two is better management of access.
Score: 3 Votes (Like | Disagree)
shareef777 Avatar
45 months ago
Here’s a great idea, stop centralizing databases.

Decentralize the customer information so they have direct access.

That wau when a hacker comes around, it’s not just one or two targets with MILLIONS of person info, instead they would need to target one person at a time
There's no solution that's hacker-proof. A script can be written to pull the data of one customer and re-run a million times automatically to pull the data of all the others.
Score: 2 Votes (Like | Disagree)
Capeto Avatar
45 months ago
Yeah, I got a text message yesterday saying my info was compromised.

I hope whoever steals my identity enjoys the student loan debt!
Score: 2 Votes (Like | Disagree)
TheShadowKnows! Avatar
45 months ago
Beware that this is the perfect situation whereby you are the target of "spear phishing"

Here is how that would work:
[LIST=1]
* The news are out that T-Mobile servers have been compromised, and that a small fraction of subscribers will receive an email warning them that they may have been the target.
* You receive such email. The email appears to be authentic; but it is not and yet it appears crafted by T-Mobile Customer Service.
* It includes within the email body an embedded URL requesting you, the recipient, to click and login onto your T-Mobile account, and "change your password".
* The URL is fake, and points to hackers' backend servers.
* Unaware, you click and "login" with your login credentials.
* Presto, your credentials are now on the wild, and you have given the hackers a free pass to your T-Mobiel account, and posible financial information.

So beware.
Never click on embedded URLs within the body of emails.
Score: 1 Votes (Like | Disagree)
Amacfa Avatar
45 months ago
Here’s a great idea, stop centralizing databases.

Decentralize the customer information so they have direct access.

That wau when a hacker comes around, it’s not just one or two targets with MILLIONS of person info, instead they would need to target one person at a time
Score: 1 Votes (Like | Disagree)

Popular Stories

iPhone 14 Mock pill and hole thumb

ProMotion Now Expected to Remain Exclusive to iPhone 14 Pro Models, Not Expand to Entire Lineup

Sunday January 16, 2022 8:56 am PST by
Continuing the tradition set with the iPhone 13 Pro, only the highest-end iPhone 14 models will feature Apple's ProMotion display technology, according to a respected display analyst. Ross Young, who on multiple occasions has detailed accurate information about Apple's future products, said in a tweet that ProMotion will not be expanded to the entire iPhone 14 lineup and will remain...
AirPods Pro Gen 3 Mock Feature Red

AirPods Pro 2 Could Start a New Accessory Ecosystem

Friday January 14, 2022 2:34 am PST by
Apple's second-generation AirPods Pro could arrive alongside a new series of accessories, recent leaked images suggest. Alleged leaked photos of the next-generation AirPods Pro obtained by MacRumors showed a charging case with a metal loop on the side for attaching a strap. Apple has not used this design for any of its other AirPod models and it is unclear why it would be added in this...
Unlikely Products 2022 Feature

Six Rumored Apple Products You're Unlikely to See This Year

Saturday January 15, 2022 2:06 pm PST by
Much has been said about what consumers could see from Apple in 2022, but the company is also working on a handful of rumored products that aren't expected to be unveiled for at least another 12 months, and in some cases a lot longer. Of course, that's assuming they get released at all. Apple works on many potential products some of which ultimately never see the light of day. With that in...
safari icon blue banner

Safari Bug Allows Websites to Track Your Recent Browsing Activity in Real Time

Sunday January 16, 2022 3:37 pm PST by
A bug in WebKit's implementation of a JavaScript API called IndexedDB can reveal your recent browsing history and even your identity, according to a blog post shared on Friday by browser fingerprinting service FingerprintJS. In a nutshell, the bug allows any website that uses IndexedDB to access the names of IndexedDB databases generated by other websites during a user's browsing session....
ipad air 4 video

New iPad Air Rumored to Launch This Spring With A15 Chip, 5G, Center Stage Camera, and More

Saturday January 15, 2022 8:05 pm PST by
Apple is planning to release a fifth-generation iPad Air with similar features as the sixth-generation iPad mini, including an A15 Bionic chip, 12-megapixel Ultra Wide front camera with Center Stage support, 5G for cellular models, and Quad-LED True Tone flash, according to Japanese blog Mac Otakara. Citing reliables sources in China, the report claims that the new iPad Air could be...
netflix2

Netflix Again Raises Prices for All Plans, 4K Streaming Now $20 Per Month

Friday January 14, 2022 12:46 pm PST by
Netflix today updated the prices for its streaming plans, and all of its offerings are now more expensive. The Basic plan is now priced at $9.99 per month, the Standard plan is priced at $15.49 per month, and the Premium plan is priced at $19.99 per month. The Basic plan is $1 more expensive, up from $8.99 per month. This plan allows users to watch on just one screen at a time, and it limits ...
top stories 20220115

Top Stories: iPhone 14 Pro Rumors, iCloud Private Relay Controversy, iOS 15.2.1 Released, and More

Saturday January 15, 2022 6:00 am PST by
Hole-punch? Pill? Hole-punch and pill? Rumors about what the front camera system on the iPhone 14 Pro will look like are evolving rapidly, and it now appears we might be getting a novel but potentially controversial design later this year. Other major stories this week included some confusion and controversy about iCloud Private Relay being disabled for some T-Mobile customers, increasing...
iPhone 14 Mock pill and hole 16x9 120hz

Analyst: All iPhone 14 Models to Feature 120Hz Displays, 6GB of RAM, and More

Friday January 14, 2022 7:02 am PST by
Apple is rumored to announce four new iPhone 14 models in September, and ahead of time, analyst Jeff Pu has outlined his expectations for the devices. In a research note with Haitong International Securities, obtained by MacRumors, Pu claimed that all iPhone 14 models will feature ProMotion displays, compared to only Pro models currently. ProMotion enables a variable refresh rate up to 120Hz ...