Some customers' personal data exposed in T-Mobile breach
T-Mobile says about 7.8 million of its current postpaid customer accounts’ information and just over 40 million records of former or prospective customers who had previously applied for credit with the company were involved in a recent data breach
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.The names, Social Security numbers and information from driver's licenses or other identification of just over 40 million former and prospective customers that applied for T-Mobile credit were exposed in a recent data breach, the company said Wednesday.
The same data for about 7.8 million current T-Mobile postpaid customers appears to be compromised. No phone numbers, account numbers, PINs passwords, or financial information from the nearly 50 million records and accounts were compromised, it said.
T-Mobile also confirmed that approximately 850,000 active T-Mobile prepaid customer names, phone numbers and account PINs were exposed. The company said that it proactively reset all of the PINs on those accounts. No Metro by T-Mobile, former Sprint prepaid, or Boost customers had their names or PINs exposed.
There was also some additional information from inactive prepaid accounts accessed through prepaid billing files. T-Mobile said that no customer financial information, credit card information, debit or other payment information or Social Security numbers were in the inactive file.
The announcement comes two days after T-Mobile said that it was investigating a leak of its data after someone took to an online forum offering to sell the personal information of cellphone users.
The company said Monday that it had confirmed there was unauthorized access to “some T-Mobile data” and that it had closed the entry point used to gain access.
The company said that it will immediately offer two years of free identity protection services and is recommending that all of its postpaid customers change their PIN. Its investigation is ongoing.
T-Mobile, which is based in Bellevue, Washington became one of the country’s largest cellphone service carriers, along with AT&T and Verizon after buying rival Sprint.