40 Million Customers Impacted by T-Mobile Data Breach!
In August of 2021, it was revealed that hackers had put up T-Mobile customer data for sale on the darkweb. Rather than going through the hassle of ransoming T-Mobile, they simply decided to offer the data for sale on the darkweb for 6 Bitcoins (approximately $288K at the time of this publication).
The hacker (a 21 year old American citizen living abroad) is cooperating with reporters to describe the attack, which began thanks to a vulnerable router. Once inside the network he was able to force himself into hundreds of critical servers where he began siphoning data directly from their Oracle databases.
If you are a T-Mobile customer, now is the time to consider what precautions to take against SIM Swapping. The hacker revealed he was able to access PINs for some customers. It may be worth contacting T-Mobile to see about activating ACCOUNT TAKEOVER PROTECTION features. Consider changing any pins and passwords on the account. This is also a good time to update any passwords you frequently use; and if you use the same password across multiple websites/services, please stop. Hackers love recycled passwords.
Additionally, you may want to consider credit monitoring. Affected T-Mobile customers can get 2 years free through McAfee’s ID Theft Protection Service. You can use haveibeenpwned.com to see if your email has been tied to any well known data leaks, although this T-Mobile data is not likely to have hit there yet. Darkweb monitoring services are also a great way to discover when your data has hit the darkweb.
So how did T-Mobile find out they were attacked? They were notified by a cybersecurity company called Unit221B LLC who were monitoring the darkweb for their clients and found the data for sale.
Continuous darkweb monitoring works! Contact us for darkweb monitoring & reporting services today!
Read more here:
T-Mobile’s Security is ‘Awful’ Says Hacker Who Stole Data From 50 Million Customers – MacRumors
T-Mobile hack: Everything you need to know | ZDNet
T-Mobile Data Hack: What We Know and What You Need to Do – WSJ
0 Comments