Security News > 2021 > August > 100m T-Mobile Customer Records Purportedly Up for Sale

Even if T-Mobile hasn't yet confirmed the breach, T-Mobile customers would be wise to change their security PINs, given that laundry list of details that were purportedly exposed.

The attacker told BleepingComputer that T-Mobile's "Entire IMEI history database going back to 2004 was stolen." IMEI is a unique 15-digit code that precisely identifies a mobile device with the SIM card input, and an IMSI is a unique number is a unique number that identifies every user of a cellular network.

In short, the records contain "Full customer info" for T-Mobile USA customers, the threat actor told Motherboard in an online chat.

Cybersecurity intelligence firm Cyble told BleepingComputer that the threat actor claims that they obtained several databases, totaling approximately 106GB of data, including T-Mobile's customer relationship management database.

That's quite a bargain for cybercrooks, given that the records are rich in data that can be used to conduct " targeted mobile attacks, social engineering, sophisticated phishing campaigns or financial fraud.

It's too early to freak out, Kolochenko advised: "It would be premature to make conclusions before T-Mobile makes an official statement on the quantity and nature of the stolen data. The potential victims should refrain from panic and contact T-Mobile asking what type of intermediary support and compensation may be provided while the investigation is in progress. Some remediate actions, such as changing your driving license, may be time-consuming and costly, and I'd not precipitate here unless T-Mobile undertakes to cover the costs or confirm that the information was actually stolen."

News URL

https://threatpost.com/t-mobile-investigates-100m-records/168689/