 |
| Unprecedented Data Breach Strikes T-Mobile: Eighth Major Incident Since 2018 |
In another unsettling development that might give you a sense of déjà vu, T-Mobile finds itself grappling with yet another data breach, marking the third security incident this year alone. Alarmingly, this also marks the eighth significant breach the company has faced since 2018.
Update: T-Mobile has moved swiftly to deny reports of a data breach, asserting that the data in question is believed to be associated with an independently owned authorized retailer. This statement was provided to BleepingComputer.
The breach came to light when threat actors took to the notorious cybercriminal hub known as BreachForum to claim responsibility for their actions. The stolen data comprises a staggering 90GB of personally identifiable information (PII), encompassing details related to both T-Mobile employees and customers. This trove of data includes login credentials, partial social security numbers (SSNs), email addresses, as well as the company's sales and analytics data, support call records with customers, and various other types of information.
The cybersecurity community first became aware of this breach thanks to the vigilant researchers at vx-underground, who sounded the alarm on Twitter (X). Remarkably, the breach itself occurred in April 2023, raising questions about why the threat actors waited for several months before disclosing the stolen data.
Regrettably, data breaches have become an all-too-familiar occurrence for T-Mobile. This latest incident follows closely on the heels of a breach in March 2023 and the massive breach that unfolded in January 2023, exposing the personal information of around 37 million customers.
Post a Comment