Data Breach

Hackers gained access to T-Mobile customers and employee personal info

New problems for the wireless carrier T-Mobile that disclosed a data breach that exposed some of the customers’ personal information.

The wireless carrier T-Mobile was victims of a sophisticated cyber attack that targeted its email vendor.

data breach notification published by the telecommunications giant on its website revealed that the security breach impacted both employees and customers.

“Our Cybersecurity team recently identified and shut down a malicious attack against our email vendor that led to unauthorized access to certain T-Mobile employee email accounts, some of which contained account information for T-Mobile customers and employees.” reads the data breach notification.

The company has immediately launched an investigation with the help of leading forensics experts, it already reported the incident to federal law enforcement.

Exposed data included customer names and addresses, phone numbers, account numbers, rate plans and features, and billing information, fortunately, financial information (including credit card data) and Social Security number were not impacted.

T-Mobile confirmed that some of these accounts accessed by the hackers contained account information for its customers and employees.

The company declared that it is not aware of abuses of the exposed information.

“We are not aware of any evidence where the information contained in the affected email accounts has been used to commit fraud or otherwise misused.” continues the notice.

Customers who believe they might have been impacted by the data breach could contact Customer Care for additional information and assistance.

T-Mobile was able to identify the intrusion and shut down the unauthorized access.

At the time of writing the company did not provide details on the attack, including the timeframe for it took place and the number of impacted customers.

In November 2019, the US branch of the telecommunications giant disclosed another security breach that according to the company impacted a small number of customers of its prepaid service.

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, T-mobile)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Recent Posts

Cisco addressed high-severity flaws in IOS and IOS XE software

Cisco addressed multiple vulnerabilities in IOS and IOS XE software that can be exploited to…

12 hours ago

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Google's Threat Analysis Group (TAG) and Mandiant reported a surge in the number of actively…

19 hours ago

Google addressed 2 Chrome zero-days demonstrated at Pwn2Own 2024

Google addressed two zero-day vulnerabilities in the Chrome web browser that have been demonstrated during…

1 day ago

INC Ransom stole 3TB of data from the National Health Service (NHS) of Scotland

The INC Ransom extortion group hacked the National Health Service (NHS) of Scotland and is threatening…

1 day ago

CISA adds Microsoft SharePoint bug disclosed at Pwn2Own to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Microsoft SharePoint vulnerability disclosed at the…

2 days ago

The DDR Advantage: Real-Time Data Defense

This is the advantage of Data Detection and Response (DDR) for organizations aiming to build…

2 days ago

This website uses cookies.