![]() ![]() We have determined that unauthorized access to some T-Mobile data occurred, however we have not yet determined that there is any personal customer data involved. Later on, on the 16 th of August, in a statement published on the company’s website, T-Mobile confirmed that their servers were victims of a security breach, but the company is still investigating if customer data was really accessed, as this information is not yet officially confirmed by the company. What T-Mobile Says About This Data BreachĪfter getting knowledge of the security breach, T-Mobile declared that the recent claims came to their attention and an investigation was started, but they did not have further details to add. The T-Mobile data breach was initially reported by Vice’s Motherboard and by checking the information samples the threat actors provided, they come to the conclusion that the data breach is certainly linked to T-Mobile. To prove the T-Mobile data breach, threat actors distributed a print screen where an SSH connection to an Oracle production server is illustrated by sharing it with BleepingComputer. The hackers performed the security breach two weeks ago, including also an Oracle database. The targets of the threat actors had been T-Mobile servers that were involved in development, staging, and production. On the 14 th of August, a database containing data of 30 million customers was circulating on a hacking forum, being for sale with six bitcoin (~$280K). When Has the News of the T-Mobile Data Breach Been Known Names and phone numbers of the clients.IMSI and IMEI of the customers (International mobile subscriber identity, respectively International Mobile Equipment Identity): the IMEI history dating to 2004 was accessed.T-Mobile Data Breach: What Information Has Been Stolen?Īccording to the BleepingComputer publication, the hackers claimed that the hijacked data supposedly means: The hacker asserted that the impact points out to 100 million T-Mobile clients, the consequences of this cyber attack consisting in the theft of databases where private customer information was stored. The settlement still needs approval from from the court, something that’s expected to happen by the end of 2022.įollow on Twitter for the latest computer security news.A T-Mobile data breach has come to the public’s attention after being announced by a cybercriminal. In return, T-Mobile doesn’t have to admit guilt, so this isn’t a fine or a criminal penalty – it’s a civil agreement to settle the matter. Part of the $350 million mega-settlement, says Reuters, is up to $105,000,000 (30% of the total amount) for the lawyers, leaving a slightly less dramatic $245 million for the individuals who joined the suit.Īpparently, more than 75 million people were affected in the breach, though with the standard payout listed by Reuters as $25 per person, it looks as though fewer than 10 million of them decided to sign up to be part of the legal action.Īccording to Reuters, T-Mobile will also commit to spending “an additional US$150 million to upgrade data security”, bringing its total settlement pledge to half-a-billion dollars. Reuters reports that T-Mobile has agreed, in a US federal court in Missouri, to make $350,000,000 available for what are known in America as class-action settlements.Ĭlass actions involve individuals, who would otherwise need to sue individually for impossibly small amounts, banding together with a team of attorneys to bring lawsuits that combine their individual complaints. You can view your phone’s IMEI by dialling the special phone number *#06#. Because the IMEI is considered a “non-resettable identifier”, apps on both Android and iOS are restricted from accessing it unless they have been granted special device management privileges, and developers are instructed to rely on user-resettable identifiers such as advertising IDs when legitimately tracking users and devices. IMEI is short for International Mobile Equipment Identity, a globally unique serial number burned into your phone when it’s manufactured. Motherboard has seen samples of the data, and confirmed they contained accurate information on T-Mobile customers. The data include social security numbers, phone numbers, names, physical addresses, unique IMEI numbers, and driver licenses information, the seller said. VICE’s Motherboard reporters wrote at the time that: Just under a year ago, the US arm of telecomms giant T-Mobile admitted to a data breach after personal information about its customers was offered for sale on an underground forum.Īt the time, VICE Magazine claimed to have communicated with the hacker behind the breach via online chat, and to have been offered “T-Mobile USA.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |