Written by Justin Rodney
T-Mobile is going through another Cyber Security Attack. Last weekend Motherboard, gathered information following a claim that T-Mobile was investigating a post on an underground criminal dark web forum. A seller on the website was looking to sell the information of more than 100 million former and current T-Mobile users. T-Mobile confirmed the rumors in a press release detailing more information.
In context, this was a day after the Motherboard article came out. America’s 3rd largest carrier detailed that 7.8 million current post-paid customers had information taken in the data breach. That means some personal data on current and former post-paid were taken. Personal information includes customer names, dates of birth, social security numbers, driver’s license information.
T-Mobile continued that 40 million records of former and prospective customers were taken. BUT that does not include phone numbers, account numbers, PINs, passwords, or financial information.
T-Mobile also warned the public that about 850,000 active customer’s names, phone numbers, and account PINs have been compromised. The company has vigorously told its users to reset their PINs since the attack and they fear more fallout will come from it.
This is T-Mobile’s FIFTH cybersecurity breach in four years.
The seller on the underground criminal forum claims to have more data swiped from T-Mobile’s servers. Information that includes more than what mentioned before. Information like physical addresses and unique IMEI (International Mobile Equipment Identity) numbers.
The seller is apparently asking for 6 bitcoin, which is $270,000 USD, to return a subset of the date back to T-Mobile. A single subset would contain 30 million social security numbers and driver’s licenses.
The seller has been kicked out of the backdoor services of T-Mobile, but will the hackers go for more? That remains to be seen.
Who is more in the wrong?
T-Mobile for getting hacked again or the underground seller selling subsets of data for $270,000 a pop.