T-Mobile – a United States-based wireless network operator has confirmed the data breach on its US servers on August 20, 2018.
The T-Mobile breach may have impacted sensitive data of 2 million of T-Mobile customers during the hack. The company has released the statement, that on August 20, the company’s security team has discovered and closed an unauthorized access to user data. The company claims that the financial data of the T-Mobile customers were not impacted.
None of your financial data (including credit card information) or social security numbers were involved, and no passwords were compromised. However, you should know that some of your personal information may have been exposed, which may have included one or more of the following: name, billing zip code, phone number, email address, account number and account type (prepaid or postpaid).
However, the company’s spokesperson told the MotherBoard that the encrypted passwords were included in the compromised data, even though I the original announcement it is said that no passwords were compromised. The spokesperson also did not reveal the more detailed information on how those passwords were encrypted or what hashing algorithm was used.
The company does not go deeper into details and does not reveal the exact number of the impacted customers. However, a T-Mobile spokesman notes that only less than 3% of all 77 million T-Mobile customers could be affected by the hack.
T-Mobile has not revealed how the attackers could have hacked into the servers.
According to the MotherBoard, the attackers who managed to access T-Mobile Servers is a part of an international group. The impacted services did not contain any financial or other sensitive data. The spokesman also noted that the unauthorized access was found and shut down very fast.
Law enforcement was informed about the attack just after it was discovered.
T-Mobile notifies all of the affected customers via text messages, phone calls or letter in the mail. Those customers who did not receive either text message, letter or a phone call, can relax because that means that their data was not among the impacted accounts by this breach.
“We take the security of your information very seriously and have a number of safeguards in place to protect your personal information from unauthorized access,” T-Mobile said. “We truly regret that this incident occurred and are so sorry for any inconvenience this has caused you.”
T-Mobile has also provided its customers with the customer service number 611 to find out information about the security breach.