T-Mobile's Latest Data Breach Linked to SIM Swap Attacks

Back in August, T-Mobile suffered a massive data breach impacting more than 50 million current, former, and prospective T-Mobile users, and now the cellular company is dealing with another smaller data breach incident.

tmobilelogo
Reports yesterday suggested that T-Mobile was aware of unauthorized activity affecting some customer accounts, and now, T-Mobile has confirmed that those reports were due to SIM swap attacks affecting a "very small number of customers."

In a statement to Bleeping Computer, T-Mobile said that impacted customers had been informed that they had been the victim of SIM swap attacks. In a SIM swap attack, social engineering is used to persuade T-Mobile employees to reassign the phone numbers linked to a person to someone else, allowing attackers to take over a phone number. This can be devastating, as phone numbers are often linked to email accounts, banking accounts, and other sensitive information.

We informed a very small number of customers that the SIM card assigned to a mobile number on their account may have been illegally reassigned or limited account information was viewed.

Unauthorized SIM swaps are unfortunately a common industry-wide occurrence, however this issue was quickly corrected by our team, using our in-place safeguards, and we proactively took additional protective measures on their behalf.

T-Mobile says that the attack has been mitigated and that the issue has now been corrected, but the company has not provided specific details on the number of customers impacted nor how the hackers were able to execute the SIM swap attacks.

In the August data breach, attackers were able to obtain phone numbers, addresses, birth dates, social security numbers, driver's license and ID info, IMEI numbers, and IMSI numbers for more than 50 million people, with the information offered up for sale.

T-Mobile CEO Mike Sievert apologized for the breach at the time, and said that T-Mobile was "truly sorry" for the incident, which was the result of a "bad actor" who used knowledge of T-Mobile's technical systems to gain access to testing environments, using brute force attacks to access T-Mobile's IT servers.

To prevent future attacks, T-Mobile entered into a long-term partnership with cybersecurity experts at Mandiant and with consulting firm KPMG LLP, and the company said that it was planning a multi-year investment to improve security.

Top Rated Comments

sw1tcher Avatar
22 weeks ago

No wonder Apple wants to transition into eSim
eSIM is not going to 100% prevent SIM swap attacks.

The weak link is the customer service rep approving the swap.
Score: 22 Votes (Like | Disagree)
VulchR Avatar
22 weeks ago
Time to start compensating people directly and substantially when their data are hacked.
Score: 20 Votes (Like | Disagree)
noone Avatar
22 weeks ago
I think its about time TMobile gets heavily fined for every data breach they have. I understand that, despite best efforts, things can happen. But TMobile gets hit over and over and over and over and over again. At this point its pure negligence.
Score: 14 Votes (Like | Disagree)
BigBlur Avatar
22 weeks ago
Just curious, how does eSIM solve this? It’s not like they are actually swapping physical SIM cards…
Score: 14 Votes (Like | Disagree)
Apple$ Avatar
22 weeks ago
Maybe it's time for Apple to start their own MVNO company. At least in the US.
Score: 13 Votes (Like | Disagree)
jz0309 Avatar
22 weeks ago
Guess their engagement with cyber security experts is not working yet…
Score: 12 Votes (Like | Disagree)

Related Stories

tmobilelogo

T-Mobile CEO Apologizes for Data Breach, Shares Info on Future Security Plans

Friday August 27, 2021 1:03 pm PDT by
T-Mobile CEO Mike Sievert today penned a letter to T-Mobile customers apologizing for the recent data breach that impacted more than 50 million current, former, and prospective T-Mobile users. Data that included names, phone numbers, addresses, birth dates, social security numbers, driver's license and ID info, IMEI numbers, and IMSI numbers was stolen and has been offered for sale. "We...
apple bitcoin hack

22-Year-Old UK Citizen Arrested for 2020 Twitter Hack Affecting Apple

Wednesday July 21, 2021 10:47 am PDT by
The United States Justice Department has continued pursuing those responsible for a 2020 Twitter hack that saw the accounts of high-profile companies and individuals hacked as part of a Bitcoin scam. Several people have already been arrested and charged for the attack, and the DoJ today announced (via The Verge) that 22-year-old Joseph O'Connor, aka "PlugWalkJoe," has also been arrested....
iPhone SE 3 stacked

Apple Using Streamlined Purchase Process for T-Mobile and AT&T iPhone SE Buyers

Thursday March 17, 2022 2:50 pm PDT by
Apple is streamlining its iPhone purchase process with the launch of the iPhone SE, and has introduced a new buying method that allows customers to purchase T-Mobile and AT&T devices without inputting their current carrier information. As outlined by Bloomberg, customers typically need to provide their wireless phone number and social security number when making an iPhone purchase, a process ...
tmobilelogo

T-Mobile Data Breach Included Personal Information of Almost 50 Million Customers

Wednesday August 18, 2021 5:41 am PDT by
T-Mobile has issued a statement with further details about a cyberattack that the company confirmed earlier this week, confirming that the data breach included the personal information of almost 50 million current, former, and prospective customers. Late last week, T-Mobile confirmed that a forum post that purported to offer data from more than 100 million people was the result of a company...
oculus health app

Oculus Quest 2 Movement Data Will Sync With Apple Health App Starting in April

Thursday March 10, 2022 11:07 am PST by
Facebook parent company Meta today announced an upcoming fitness update for the Oculus Quest 2, which will allow fitness data captured during VR workouts to be integrated with the Apple Health app. Right now, when people exercise with interactive games like Liteboxer, Beat Saber, or Dance Central using the Oculus Quest 2, the data can only be viewed on the Oculus Mobile app on the headset...
tmobilelogo

T-Mobile Says an Additional 5.3 Million Customer Accounts Were Compromised in Data Breach

Friday August 20, 2021 9:21 am PDT by
T-Mobile earlier this week shared details on a data breach where hackers gained access to the personal information of close to 50 million current, former, and prospective customers. At the time, T-Mobile said that data from 7.8 million current customers had been compromised, as well as information from 40 million former or potential customers. In an updated statement provided today, T-Mobile ...
iphone se black

T-Mobile Will Pay Off Your Current Phone Up to $1,000 If You Switch

Thursday October 21, 2021 8:47 am PDT by
T-Mobile today announced that, starting October 22, it will pay off a qualifying customer's remaining eligible smartphone payments up to $1,000 via virtual prepaid MasterCard when they switch to the carrier in the United States. The limited time offer is designed to allow customers to switch from their current carrier to T-Mobile and continue using their existing smartphone without cost....
iCloud General Feature

UK Network Operators Target iCloud Private Relay in Complaint to Regulator

Sunday March 13, 2022 3:48 am PDT by
A group of UK network operators have formally urged the UK's Competition and Markets Authority (CMA) to regulate iCloud Private Relay, claiming that Apple's privacy service is anti-competitive, potentially bad for users, and a threat to national security. In its response to the CMA's Interim Report on mobile ecosystems, Mobile UK, a trade association of British mobile network operators,...

Popular Stories

iPhone 14 Pro Purple Front and Back MacRumors Exclusive

iPhone 14 Pro Renders Highlight Multiple Design Changes

Wednesday May 25, 2022 8:56 am PDT by
Leaker Jon Prosser today shared ostensibly accurate renders of the iPhone 14 Pro, providing the most accurate look yet at what the device could look like when it launches later this year. In the latest video on YouTube channel Front Page Tech, Prosser revealed renders of the iPhone 14 Pro made by Apple concept graphic designer Ian Zelbo, highlighting a range of specific design changes...
apple account card

Wallet App Now Supports Apple Account Cards on iOS 15.5

Wednesday May 25, 2022 5:01 pm PDT by
Apple appears to have recently updated the Wallet app to allow users to add an Apple Account Card, which displays the Apple credit balance associated with an Apple ID. If you receive an App Store or Apple Store gift card, for example, it is added to an Apple Account that was previously visible in the App Store and Apple Store apps. As of today, the Apple Account balance can also be added to...
iphone 13 pro max display bleen

iPhone 14 Max Reportedly Weeks Behind Schedule [Updated]

Thursday May 26, 2022 7:25 am PDT by
The iPhone 14 Max is currently behind schedule by around three weeks, according to Haitong International Securities analyst Jeff Pu. Yesterday, Nikkei Asia reported that at least one iPhone 14 model was three weeks behind schedule due to the impact of lockdowns on Apple's supply chains in China, but it was not clear which iPhone 14 model this related to. Now, Pu has clarified that the model...
iPad Pro USB C Feature Coral

Deals: Apple's iPad Pro Reaches Up to $449 Off in Amazon's Latest Sales

Wednesday May 25, 2022 10:09 am PDT by
Amazon is marking down a wide variety of 11-inch and 12.9-inch iPad Pro models this week, with prices starting as low as $749.00 for the 11-inch tablet. You'll find the full list of sales below, all of which can be found on Amazon. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small payment, which helps us keep...
iOS 16 mock for feature wishlist

iOS 16 Wishlist: Features MacRumors Readers Want to See in the Next Version of iOS

Friday May 27, 2022 2:15 pm PDT by
There's just over a week to go until the 2022 Worldwide Developers Conference, which is one of the biggest Apple events of the year. We've heard surprisingly little about iOS 16 this year, so we're in for some major surprises when June 6 rolls around. As we wait for the keynote event, we thought we'd share some iOS 16 wishlist items from MacRumors readers, because who knows? We just might...
top stories 28may2022

Top Stories: WWDC 2022 Schedule, New Apple Watch Pride Bands, and More

Saturday May 28, 2022 6:00 am PDT by
It's Memorial Day weekend in the United States, and that means WWDC is right around the corner and anticipation is building for what we might see at the opening keynote. Software updates are a given, but will we see any new hardware? Other news this week included the annual release of new Pride-themed Apple Watch bands, iPhone 14 Pro rumors, and Sony's latest headphones that compete against...
a16 5nm m2 3nm feature 2

Alleged Apple Chip Plans Suggest 'A16' Will Stick With 5nm, 'M2' to Make Jump to 3nm Instead

Friday May 27, 2022 6:54 am PDT by
The "A16" chip for the iPhone will reportedly be manufactured with the same process as the iPhone 13's A15 Bionic, with Apple saving a bigger performance leap for the "M2" chip designed for its next-generation Macs. Meanwhile, the company is working on a "final" M1 chip variant that uses more powerful cores from the A15, according to the leaker known as "ShrimpApplePro." In a thread on...