T-Mobile has been hacked yet again—but still doesn’t know what was taken
T-Mobile said Monday that hackers breached its internal servers and that company investigators were determining whether the incident involved the theft of sensitive customer data.
“We have determined that unauthorized access to certain T-Mobile data has occurred, but we have not yet determined that there was any personal customer data involved,” the company said in a statement. “We have worked tirelessly to investigate allegations that T-Mobile’s data may have been accessed illegally.”
The statement came a day after Motherboard reported that a forum post promoting a huge amount of data for sale. The post did not mention T-Mobile, but the seller told the publication that the data involved more than 100 million people and came from T-Mobile’s servers.
The seller reportedly said the data included social security numbers, phone numbers, names, physical addresses, unique IMEI numbers and driver’s license numbers. Motherboard confirmed that sample data made available by the seller “contained specific information about T-Mobile customers.”
Ars was unable to confirm the authenticity of the claims of the person who posted the message and spoke to Motherboard.
According to some figures, T-Mobile has experienced as many as six separate data breaches in recent years. They include a hack in 2018 that gave unauthorized access to customer names, billing zip codes, phone numbers, email addresses, and account numbers. In a breach last year, hackers escaped with data, including customer names and addresses, phone numbers, account numbers, pricing plans and features, as well as customer information. billing.
According to report By reporter Jeremy Kirk, the person responsible for the latest T-Mobile hack claimed to have gained unauthorized access by operating an improperly configured GPRS gateway, which carriers use in 2G or 3G cellular communications.
The person claiming to have compromised T-Mobile claims that the company misconfigured a gateway GPRS support node that was apparently used for testing. He was exposed to the Internet. This allowed the person to eventually pivot to the local network. Screenshot of proof provided. pic.twitter.com/tBMvRBmG0r
– Jeremy Kirk (@Jeremy_Kirk) August 16, 2021
If claims that 100 million people’s data has been hacked prove to be true, this latest breach will be one of the largest ever breaches to carrier data.