T-Mobile's Latest Data Breach Linked to SIM Swap Attacks - MacRumors
Skip to Content

T-Mobile's Latest Data Breach Linked to SIM Swap Attacks

by

Back in August, T-Mobile suffered a massive data breach impacting more than 50 million current, former, and prospective T-Mobile users, and now the cellular company is dealing with another smaller data breach incident.

tmobilelogo
Reports yesterday suggested that T-Mobile was aware of unauthorized activity affecting some customer accounts, and now, T-Mobile has confirmed that those reports were due to SIM swap attacks affecting a "very small number of customers."

In a statement to Bleeping Computer, T-Mobile said that impacted customers had been informed that they had been the victim of SIM swap attacks. In a SIM swap attack, social engineering is used to persuade T-Mobile employees to reassign the phone numbers linked to a person to someone else, allowing attackers to take over a phone number. This can be devastating, as phone numbers are often linked to email accounts, banking accounts, and other sensitive information.

We informed a very small number of customers that the SIM card assigned to a mobile number on their account may have been illegally reassigned or limited account information was viewed.

Unauthorized SIM swaps are unfortunately a common industry-wide occurrence, however this issue was quickly corrected by our team, using our in-place safeguards, and we proactively took additional protective measures on their behalf.

T-Mobile says that the attack has been mitigated and that the issue has now been corrected, but the company has not provided specific details on the number of customers impacted nor how the hackers were able to execute the SIM swap attacks.

In the August data breach, attackers were able to obtain phone numbers, addresses, birth dates, social security numbers, driver's license and ID info, IMEI numbers, and IMSI numbers for more than 50 million people, with the information offered up for sale.

T-Mobile CEO Mike Sievert apologized for the breach at the time, and said that T-Mobile was "truly sorry" for the incident, which was the result of a "bad actor" who used knowledge of T-Mobile's technical systems to gain access to testing environments, using brute force attacks to access T-Mobile's IT servers.

To prevent future attacks, T-Mobile entered into a long-term partnership with cybersecurity experts at Mandiant and with consulting firm KPMG LLP, and the company said that it was planning a multi-year investment to improve security.

Tag: T-Mobile

Popular Stories

Aston Martin CarPlay Ultra Screen

Apple Says CarPlay Ultra is Coming to These Vehicle Brands

Thursday May 21, 2026 11:53 am PDT by
Last year, Apple launched CarPlay Ultra, the long-awaited next-generation version of its CarPlay software system for vehicles. Nearly a year later, CarPlay Ultra is still limited to Aston Martin's latest luxury vehicles, but that should change fairly soon. In May 2025, Apple said many other vehicle brands planned to offer CarPlay Ultra, including Hyundai, Kia, and Genesis. CarPlay Ultra...
Read Full Article
ios 26 iphone 16 pro lock screen notifications feature 1

iOS 27 Notifications Will Slide in From Left Side of Your iPhone's Screen

Friday June 5, 2026 7:24 am PDT by
Bloomberg's Mark Gurman today revealed another iOS 27 change: notifications will slide in from the left side of the screen instead of from the top. In addition, accessing Notification Center on iOS 27 will require swiping down on the top-left corner of the screen. If you swipe down on the Dynamic Island area, a new "Search or Ask" interface tied to the revamped Siri will appear, instead of...
Read Full Article88 comments
WWDC26 Mock Feature 2

Will Apple Launch New Hardware at WWDC Next Week?

Friday June 5, 2026 7:56 am PDT by
Apple has several hardware releases in the pipeline, but will we see any of them unveiled at this year's Worldwide Developers Conference? WWDC is primarily a software event where new versions of iOS, iPadOS, macOS, watchOS, tvOS, and visionOS take center stage, but it's not unusual for Apple to introduce new hardware during the developer conference. Take WWDC 2017, for example, where Apple...
Read Full Article79 comments

Top Rated Comments

sw1tcher Avatar
sw1tcher
58 months ago

No wonder Apple wants to transition into eSim
eSIM is not going to 100% prevent SIM swap attacks.

The weak link is the customer service rep approving the swap.
Score: 22 Votes (Like | Disagree)
VulchR Avatar
VulchR
58 months ago
Time to start compensating people directly and substantially when their data are hacked.
Score: 20 Votes (Like | Disagree)
B
BigBlur
58 months ago
Just curious, how does eSIM solve this? It’s not like they are actually swapping physical SIM cards…
Score: 14 Votes (Like | Disagree)
noone Avatar
noone
58 months ago
I think its about time TMobile gets heavily fined for every data breach they have. I understand that, despite best efforts, things can happen. But TMobile gets hit over and over and over and over and over again. At this point its pure negligence.
Score: 14 Votes (Like | Disagree)
Apple$ Avatar
Apple$
58 months ago
Maybe it's time for Apple to start their own MVNO company. At least in the US.
Score: 13 Votes (Like | Disagree)
jz0309 Avatar
jz0309
58 months ago
Guess their engagement with cyber security experts is not working yet…
Score: 12 Votes (Like | Disagree)
Read All Comments