Wireless Carrier T-Mobile Hit with Fourth Data Breach Since 2018
Note: We are reader supported and may earn a small commission when you click on links in posts
Wireless carrier T-Mobile announced that the company was again the target of a successful cyberattack. The attackers accessed information related to customers’ T-Mobile accounts. The cyber security incident announcement did not include the dates of the attack or exactly what information was accessed by the cybercriminals.
“Our Cybersecurity team recently discovered and shut down malicious, unauthorized access to some information related to your T-Mobile account,” says the statement from T-Mobile on their website.
At this time, it is believed that the attackers did not access names on the account, physical addresses, email addresses, financial data, credit card information, social security numbers, tax ID, passwords, or PINs.
T-Mobile did not state what information was accessed for exfiltrated by the cybercriminals. The company also did not state how many customers the attack impacted.
In April 2020, T-Mobile and Sprint merged to become the largest 5G carrier in the United States.
“We take the security of customer information seriously and, while we have a number of safeguards in place to protect customer information from unauthorized access, we will continue to work to further enhance security so we can mitigate this type of activity,” said T-Mobile in the announcement.
T-Mobile Cyberattacks
This is the fourth successful cyberattack against the wireless carrier since in the past three years. In 2018, cybercriminals exfiltrated the personal information of over two million T-Mobile prepay and post-pay customers. In that security incident, the stolen data included customer names, phone numbers, e-mail addresses, and account numbers.
A T-Mobile data breach happened again in 2019 when attackers stole account information from one million T-Mobile prepaid plan customers. In 2020 T-Mobile was once again hacked. In that security incident, the aggressors hacked into employee email accounts. They also took customer financial data.
