Security News T-Mobile Suffers Data Breach Affecting 2.2 million Customers

[upnorth]

Content source

https://nakedsecurity.sophos.com/2018/08/24/t-mobile-suffers-data-breach-affecting-2-2-million-customers/

The third most popular mobile network in the US, T-Mobile, has suffered a data breach that affected more than two million of its customers. According to the company’s website, on 20 August 2018, T-Mobile’s inhouse security team noticed unusual activity that was immediately “shut down.” Data potentially compromised before the shutdown included subscribers’ names, billing zip codes, phone numbers, email addresses, account numbers and account types (e.g. pre-paid or billed). Apparently, no social security numbers (SSNs), financial data or account passwords were accessed during the attack. The alert doesn’t mention the number of subscribers involved but this is being reported by Motherboard as just shy of 3%, or around 2.26 million accounts. Users caught up in the breach would be contacted with further instructions, T-Mobile said, though the company didn’t say how or when that would happen. (Motherboard quoted a spokesperson as saying that affected customers would be told by text message.) If there’s good news in this incident, it’s that the breach seems to have been noticed quickly by T-Mobile’s inhouse security team, and the company has told its customers within a matter of days.

 

[ForgottenSeer 58943]

Nice job. Caught early.

I remember a few years ago T-Mobile ramped up their IT Security and Threat Monitoring department quite heavily. Also updating some of their technology. It looks like having that threat response team paid off at least in terms of limiting the damage, and amount of compromise to a tiny fraction of their customers.

 

[deltamind]

Hacking and cracking working side by side, nice I like that!