Gadgets News

Hackers stole the data of 37 million T-Mobile customers

T-Mobile announced that hackers have accessed the data of 37 million of its customers in submission on Thursday with the Securities and Exchange Commission. The massive security breach affects both prepaid and postpaid customer accounts and is the second notable breach in less than two years. The company said it is in the process of notifying those affected.

The (sort of) good news: T-Mobile said that sensitive financial information about customers, such as credit card numbers and social security numbers, was not part of the hack. Instead, according to the company, the attackers could only collect account information such as names, billing addresses, emails, phone numbers, dates of birth, and phone line details. However, there is a lot of data that cybercriminals need to get their hands on, and T-Mobile customers need to be aware that their personal information might be in there.

The hackers were reportedly able to access the data through a single application programming interface (API), software that allows multiple computer programs to communicate with each other. Attackers hacked the T-Mobile API without permission.

Telecom The vendor said it first discovered the hack on January 5 and stopped the malicious activity in less than a day with the help of external cybersecurity support. However, by that time the violation had been going on for more than a month. The company noted that it believes hackers first broke into the affected API around November 25, 2022.

“It appears that the malicious activity is now fully contained,” the company wrote in a report on Thursday, but added that it continues to investigate what happened.

This latest hack is far from the only one that T-Mobile and its customers have experienced in recent years. In August 2021 the company recognized to an even bigger hack involving at least 48 million customers (although a subsequent class action lawsuit claimed 76 million, and the hackers claimed the number was close to 100 million). Previously, T-Mobile also suffered from a data breach in 2020, 2019, 2018and 2015.

2021 security glitch resulted in T-Mobile paying out Compensation in the amount of 500 million dollars. $350 million of that money went to affected clientsand the remaining $150 million was intended to improve the company’s digital security.

“In 2021, we began a significant multi-year investment by working with leading external cybersecurity experts to expand our cybersecurity capabilities and change the way we approach cybersecurity,” the company noted in this week’s leak disclosure. “To date, we have made significant progress and protecting our customers’ data remains a top priority. We will continue to invest heavily in strengthening our cybersecurity program.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button