Update 9/16 9:08 pm:
T-Mobile has confirmed the attack but did not share its extent.
“We are confident that the entry point used to gain access has been closed, and we are continuing our deep technical review of the situation across our systems to identify the nature of any data that was illegally accessed. This investigation will take some time but we are working with the highest degree of urgency. Until we have completed this assessment we cannot confirm the reported number of records affected or the validity of statements made by others.”
—
Breaking news! T-Mobile is currently investigating reports of a huge customer data breach. According to the report, the hackers have been able to access around 100 million users.
The report states that the hackers were able to access customer data including their social security numbers, names, phone numbers, physical addresses, driver’s license information, and unique IMEI numbers.
It is said that T-Mo was alerted of the possible breach via a forum post. The alert was sent by a hacker who claimed to be selling the personal data he was able to steal. Although the forum post did not specifically mention T-Mobile, the seller claimed that he got the information from T-Mobile Servers.
The report shares that the hacker is asking for six bitcoin, or around $260,000 for a small amount of the data he was able to hack. This amount is only equivalent to 30 million social security numbers and driver’s licenses.
As revealed by the hacker, T-Mobile was already able to respond to the breach. “I think they already found out because we lost access to the backdoored servers.”
Even though the hacker had already been removed from the server, he shares that he was already able to download the data locally to his computer.
In a statement, T-Mobile has addressed the claim and said:
“We are aware of claims made in an underground forum and have been actively investigating their validity. We do not have any additional information to share at this time.”
This is a developing story.
Source: 1