T-Mobile experienced a security breach in December that could have revealed call-related details and phone numbers to some of its clients. First reported by Bleeping Computer, the details impacted by the violation did not contain customer identities, physical or email addresses, financial records, credit card information, social security numbers, tax IDs, passwords, or PINs, the firm said.
T-Mobile said in a statement submitted to The Verge that it had told “less than 0.2 percent” of its clients. It’s over 200,000 employees employed. Any account details could have been obtained improperly. That information “may have included phone numbers, several lines subscribed, and in a small number of cases some call-related information collected as part of normal operation and service.” T-Mobile claims it “identified this attack at the beginning of December and quickly shut down the incident.” Affected customers were alerted via text message.
In a note on its website, T-Mobile reported that its security staff had “shut down malicious, unauthorized access” and launched an investigation to ascertain what information was involved. The business disclosed the case to federal law enforcement authorities.
T-Mobile has been the victim of a variety of data hacks in recent years; in 2018, hackers compromised sensitive information for nearly 2 million users, including names, addresses, and account numbers. In 2019, some of the company’s prepaid customers were hit by a violation accessing names, emails, and account numbers. And in March 2020, a leak leaked financial records to certain T-Mobile subscribers, Social Security numbers, and other account information.
