T-Mobile has warned millions of its customers that an actor used an application programming interface (API) to access some of their sensitive data.
In a warning posted on the company’s website, T-Mobile attempted to downplay the incident, saying that some “basic customer information (almost all of it of the type widely available in marketing databases or directories)” was obtained.
However, the data includes people’s names, billing addresses, email addresses, phone numbers, dates of birth, account numbers, all valuable information for identity theft. (Opens in a new tab) Attacks, phishing and similar social engineering attacks.
Millions of victims
The company confirmed that passwords, payment card information, social security numbers, government identification numbers, as well as financial account information remained secure. It also said its investigations found no evidence of a breach in its networks or systems.
While the warning does not say how many people were affected by the breach and what types of accounts were compromised, the data of 37 million customers, including prepaid and postpaid customers, was accessed.
The attack occurred between November 25, 2022, and January 5, 2023. On January 6, T-Mobile finally cut off the threat actors’ access.
The company was said to have reported the attack to both law enforcement and federal agencies in the United States, which is now being investigated. T-Mobile also added that it has begun notifying customers whose data may have been compromised.
The German telecoms giant’s record regarding data breaches is far from perfect. The company has had several incidents over the years, including one in 2018, one in 2019, and at least three in 2020. In 2021, it was revealed that the company paid hundreds of thousands of dollars not to leak its sensitive data to the web. , which happened anyway, and a year later, in 2022, he confirmed that he had been targeted by the Lapsus$ extortion gang.
Via: BleepingComputer (Opens in a new tab)