T-Mobile's Latest Data Breach Linked to SIM Swap Attacks

by

Back in August, T-Mobile suffered a massive data breach impacting more than 50 million current, former, and prospective T-Mobile users, and now the cellular company is dealing with another smaller data breach incident.

tmobilelogo
Reports yesterday suggested that T-Mobile was aware of unauthorized activity affecting some customer accounts, and now, T-Mobile has confirmed that those reports were due to SIM swap attacks affecting a "very small number of customers."

In a statement to Bleeping Computer, T-Mobile said that impacted customers had been informed that they had been the victim of SIM swap attacks. In a SIM swap attack, social engineering is used to persuade T-Mobile employees to reassign the phone numbers linked to a person to someone else, allowing attackers to take over a phone number. This can be devastating, as phone numbers are often linked to email accounts, banking accounts, and other sensitive information.

We informed a very small number of customers that the SIM card assigned to a mobile number on their account may have been illegally reassigned or limited account information was viewed.

Unauthorized SIM swaps are unfortunately a common industry-wide occurrence, however this issue was quickly corrected by our team, using our in-place safeguards, and we proactively took additional protective measures on their behalf.

T-Mobile says that the attack has been mitigated and that the issue has now been corrected, but the company has not provided specific details on the number of customers impacted nor how the hackers were able to execute the SIM swap attacks.

In the August data breach, attackers were able to obtain phone numbers, addresses, birth dates, social security numbers, driver's license and ID info, IMEI numbers, and IMSI numbers for more than 50 million people, with the information offered up for sale.

T-Mobile CEO Mike Sievert apologized for the breach at the time, and said that T-Mobile was "truly sorry" for the incident, which was the result of a "bad actor" who used knowledge of T-Mobile's technical systems to gain access to testing environments, using brute force attacks to access T-Mobile's IT servers.

To prevent future attacks, T-Mobile entered into a long-term partnership with cybersecurity experts at Mandiant and with consulting firm KPMG LLP, and the company said that it was planning a multi-year investment to improve security.

Tag: T-Mobile

Popular Stories

iphone 16 pro models 1

First iPhone 17 Pro Design Leak Claims Surprising Return to Aluminum, Rectangular Camera Bump, and More

Monday November 25, 2024 8:07 am PST by
Apple's iPhone 17 Pro and iPhone 17 Pro Max will offer "significant design changes," The Information's Wayne Ma reports. The two flagship iPhone 17 models will be the first high-end iPhones to feature an aluminum frame since the delineation of the iPhone lineup into Pro and non-Pro models. In recent years, lower-end iPhone models such as the iPhone SE and iPhone 16 have featured aluminum...
Read Full Article199 comments
airpods pro bulbs

Apple Black Friday Deals Available Now: AirPods, iPads, and More

Friday November 22, 2024 5:28 am PST by
Black Friday 2024 is just a few days away, and as always this will be the best time of the year to shop for great deals. Right now, this includes big savings on popular Apple products like AirPods, Apple Watch, MacBook Air, iPad, and more. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small payment, which helps...
Read Full Article45 comments
ipads early bf deals

7 Best Black Friday iPad Deals for 2024

Saturday November 23, 2024 1:44 pm PST by
We're less than one week away from Black Friday on November 29, and Best Buy and Amazon currently have all-time low prices across Apple's entire iPad lineup. This includes Apple's 9th and 10th generation iPad, iPad mini 7, iPad Air, and iPad Pro. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small payment, which...
Read Full Article18 comments
Generic iPhone 17 Feature With Full Width Dynamic Island single camera

'iPhone 17 Air' Features Revealed in New Report: As Thin as 5mm, Single Speaker, and More

Monday November 25, 2024 8:40 am PST by
The Information's Wayne Ma and Qianer Liu today published an in-depth report about the "iPhone 17 Air," revealing several new details about the device. The report said prototypes of the device have a thickness of between 5mm and 6mm, which would make it the thinnest iPhone ever. In comparison, iPhone 16 models are 7.8mm thick and iPhone 16 Pro models are 8.25mm thick. Due to this...
Read Full Article147 comments
new mac holiday

6 Best Black Friday Mac Deals for 2024

Sunday November 24, 2024 7:21 am PST by
Black Friday 2024 is just a few days away, and you can already find the year's best prices on nearly every Mac at Amazon. Specifically, this includes the new M4 iMac, M4 MacBook Pro, and the M2 and M3 MacBook Air. We've also included a great deal on the Apple Studio Display. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small...
Read Full Article24 comments
new streaming black friday

Black Friday Streaming Deals Include Big Savings on Disney+, Hulu, Paramount+, and Peacock

Wednesday November 27, 2024 7:30 am PST by
We've been focusing on deals on physical products over the past few weeks, but Black Friday is also a great time of year to purchase a streaming membership. Some of the biggest services have great discounts for new and select returning members this week, including Disney+, Hulu, Paramount+, and Peacock. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link...
Read Full Article65 comments

Top Rated Comments

sw1tcher Avatar
sw1tcher
38 months ago

No wonder Apple wants to transition into eSim
eSIM is not going to 100% prevent SIM swap attacks.

The weak link is the customer service rep approving the swap.
Score: 22 Votes (Like | Disagree)
VulchR Avatar
VulchR
38 months ago
Time to start compensating people directly and substantially when their data are hacked.
Score: 20 Votes (Like | Disagree)
noone Avatar
noone
38 months ago
I think its about time TMobile gets heavily fined for every data breach they have. I understand that, despite best efforts, things can happen. But TMobile gets hit over and over and over and over and over again. At this point its pure negligence.
Score: 14 Votes (Like | Disagree)
BigBlur Avatar
BigBlur
38 months ago
Just curious, how does eSIM solve this? It’s not like they are actually swapping physical SIM cards…
Score: 14 Votes (Like | Disagree)
Apple$ Avatar
Apple$
38 months ago
Maybe it's time for Apple to start their own MVNO company. At least in the US.
Score: 13 Votes (Like | Disagree)
jz0309 Avatar
jz0309
38 months ago
Guess their engagement with cyber security experts is not working yet…
Score: 12 Votes (Like | Disagree)
Read All Comments