T-Mobile CEO apologizes for recent cybersecurity attack, shares future plans

t-mobile-for-business-affected-by-hack-too

Ever since T-Mobile learned of the cyberattack last week, they have been very vocal about the incident. They continued to give updates to their customers via their blog and even sent out a notification to affected customers. Today, T-Mobile CEO Mike Sievert has once again taken the time to reassure their customers and apologize for the breach. 

In a blog post, Sievert revealed that the hacker was able to access the personal information of over 54 million current and former customers. The information accessed include their names, phone numbers, social security numbers, and addresses. The CEO, however, reiterated that their customers’ financial information was not accessed. There were also some business customers who were part of the attack. 

The CEO used the platform to apologize and share the steps they are doing to prevent further attacks.

“Knowing that we failed to prevent this exposure is one of the hardest parts of this event. On behalf of everyone at Team Magenta, I want to say we are truly sorry.” 

While the CEO can’t disclose too many details about the incident, they continue to work with law enforcement to impose a criminal investigation. But Sievert insisted that there is no longer a risk to customers from the breach. 

“What we can share is that, in simplest terms, the bad actor leveraged their knowledge of technical systems, along with specialized tools and capabilities, to gain access to our testing environments and then used brute force attacks and other methods to make their way into other IT servers that included customer data. In short, this individual’s intent was to break in and steal data, and they succeeded.”

Sievert also shared that they are already working to beef up their cybersecurity. One of the steps it is taking is to forge a new long-term partnership with Mandiant and consulting firm KPMG. 

Sievert says that they are aware they “need additional expertise to take our cybersecurity efforts to the next level — and we’ve brought in the help.” 

By partnering with Mandiant and KPMG, they will work with teams to plan out “definitive actions that will be designed to protect our customers and others from malicious activity now and into the future.”

Sievert says he is confident that these new partnerships will help them improve their security measures. 

The CEO shared that they have notified “just about every current T-Mobile customer” that were victimized by the attack. You can read the full post here.

 

Source: T-Mobile

Tags: , , ,

  • Eddie

    And? He want a medal for apologize? FCC need to fine Tmobile. This is 4 or 5 time with a similar situation.

    • millenialkid

      A few years ago, TMobile was breached. The company shrugged it off and offered credit monitoring for a year.

      But by cross-referencing data between multiple breaches and/or Facebook, (T-Mobile breached SSN and Drivers License, hackers still needed a birthday) Hackers were able to open the 3 credit card accounts for my mother. Chase Bank, American Express, and Synchrony Bank all approved credit card applications when they had all the info to open a bank account.

      The Free credit monitoring was worthless; but LifeLock actually worked. My father was protected, but my mother had the free credit service.

      We’re just lucky hackers didn’t make a fake IDs and buy a car or worse.

      So one thing to point out- TMobile always states in press releases that credit card payment info was safe because credit card accounts are protected and unauthorized disclosure comes with huge fines. Not much can be done when a person steals data that enables a new line of credit or credit card account in your name.

      With this most recent breach, reporters in the news including Brian Krebs said some of the breached data had data going way back to the 1990s.

      So, unless there are laws in place with fines similar to HIPPA and PCI-DSS designed to protect, and delete data when literally no legitimate business purpose exists, we’ll see it again.

      Seriously- what purpose is there for customers that cancelled 7 years ago? Statute of Limitations already expired. They’ll call your SSN, Drivers License, address blood type, and IMEI “marketing data” because, well, they can.

      • Mrtwowheels

        Just freeze you’re credit with the three credit agencies, it’s free and it works. There is no need to pay an outsider.

  • Verizonthunder

    After another security breach followed by the hacker mentioning how easy it was to break in… He needs to provide transparency to the customers and not wallstreet.

  • Ver

    I’m just pissed.

    • DrewskiStyles790

      Hey I would be too. Total ridiculousness!!

  • marque2

    I feel much better now.

  • LOL. Classic corporate move. Hire outside “consultants” to deflect attention and blame all future problems on. What about the existing integrators that out this mess together? They should be called out for their failure.

  • steadymobb

    That article in the WSJ was embarrassing for TMO…21 year old hacks you and says how awful your security is???

  • SlopeTangentAnswer

    It’s nice that they admit they stink but how many times are people going to have their Identity stolen before they just lose faith and trust in this crappy company?

  • Frank Calderone

    I totally think it’s great, that CEO Mike Seivert came forward and
    apologized to all of it’s customers about the data breach. I will always continue, to be a customer I love everything about T-Mobile. I’ve been a Die Hard, Passionate,Loyal,Dedicated,Proud and Super fan for over six years now and I’m blown away by everything it’s Super awesome!!!!!!!!!!!