Security News > 2021 > August > T-Mobile data breach: New information uncovered by the investigation
In the wake of the recent claims that T-Mobile U.S. has suffered a massive data breach and the consequent industry reactions, the company has shared additional information its internal investigation has uncovered.
"Yesterday, we were able to verify that a subset of T-Mobile data had been accessed by unauthorized individuals. We also began coordination with law enforcement as our forensic investigation continued," T-Mobile explained.
They confirmed that data stolen from their systems did include some personal information, but there is no indication that the data contained in the stolen files included customer financial or payment information.
The stolen files contain approximately 7.8 million current T-Mobile postpaid customer accounts' information and over 40 million records of former or prospective customers who had previously applied for credit with T-Mobile.
"We have also confirmed that there was some additional information from inactive prepaid accounts accessed through prepaid billing files. No customer financial information, credit card information, debit or other payment information or SSN was in this inactive file."
T-Mobile is recommending all T-Mobile postpaid customers to proactively change their PIN, and will be offering an extra step to protect customers' mobile account, to make it "Harder for customer accounts to be fraudulently ported out and stolen."
- MyRepublic discloses data breach exposing government ID cards (source)
- MyRepublic Data Breach Raises Data-Protection Questions (source)
- A multi-party data breach creates 26x the financial damage of single-party breach (source)
- Trucking giant Forward Air reports ransomware data breach (source)
- Largest mobile SMS routing firm discloses five-year-long breach (source)
- Twitch: No credentials or card numbers exposed in data breach (source)
- Accenture confirms data breach after August ransomware attack (source)