United States Fines T-Mobile $60 Million for Failing to Prevent Unauthorized Access to Sensitive Customer Data

T-Mobile was fined $60 million by the Committee on Foreign Investment in the US (CFIUS) for negligence surrounding data breaches, reports Reuters. CFIUS penalized T-Mobile for failing to prevent or disclose unauthorized access to sensitive customer data.

T Mobile Generic Feature Pink 1
When T-Mobile merged with Sprint, it signed a national security agreement with CFIUS, which is what led to the fine earlier this year. T-Mobile is owned by German company Deutsche Telekom, and T-Mobile agreed to protect consumer data as part of the Sprint acquisition. Back in 2021, T-Mobile suffered a major breach that impacted over 100 million of its users, just a year after it acquired Sprint.

CFIUS does not typically name the companies that it fines, but T-Mobile has been called out in an effort to push companies to comply with national security rules associated with acquisitions.

In 2024, following an initial Notice of Penalty issued in 2023, CFIUS resolved an enforcement action against T-Mobile US, Inc. ("T-Mobile"), a telecommunications company, resulting in a $60 million penalty. As publicly disclosed by T-Mobile, the company entered into a National Security Agreement ("NSA") with CFIUS in 2018 in connection with T-Mobile's merger with Sprint and the foreign ownership of the resulting entity. CFIUS determined that between August 2020 and June 2021, in violation of a material provision of the NSA, T-Mobile failed to take appropriate measures to prevent unauthorized access to certain sensitive data and failed to report some incidents of unauthorized access promptly to CFIUS, delaying the Committee's efforts to investigate and mitigate any potential harm. CFIUS concluded that these violations resulted in harm to the national security equities of the United States. T-Mobile has worked with CFIUS to enhance its compliance posture and obligations and has committed to working cooperatively with the U.S. Government to ensure compliance with its obligations going forward.

T-Mobile told Reuters that it experienced technical issues when integrating with Sprint, which affected information from "a small number of law enforcement information requests." T-Mobile claims to have swiftly dealt with the issue and reported it "in a timely manner."

CFIUS said that T-Mobile's lack of timely reporting prevented CFIUS from investigating and mitigating potential harm to U.S. national security.

Popular Stories

AirPods Pro 3 Mock Feature

AirPods Pro 3 Just Months Away – Here's What We Know

Friday April 18, 2025 5:16 am PDT by
Despite being more than two years old, Apple's AirPods Pro 2 still dominate the premium wireless‑earbud space, thanks to a potent mix of top‑tier audio, class‑leading noise cancellation, and Apple's habit of delivering major new features through software updates. With AirPods Pro 3 widely expected to arrive in 2025, prospective buyers now face a familiar dilemma: snap up the proven...
iphone 17 air dummy unbox therapy

iPhone 17 Air's Extreme Thinness Demoed in New Video

Tuesday April 22, 2025 10:22 am PDT by
Apple plans to release an all-new super thin iPhone this year, debuting it alongside the iPhone 17, iPhone 17 Pro, and iPhone 17 Pro Max. We've seen pictures of dummy models, cases, and renders with the design, but Lewis Hilsenteger of Unbox Therapy today showed off newer dummy models that give us a better idea of just how thin the "iPhone 17 Air" will be. The iPhone 17 Air is expected to be ...
ipad air windows 11 arm

M2 iPad Air Runs Windows 11 ARM via Emulation, Thanks to EU Rules

Tuesday April 22, 2025 5:01 am PDT by
A developer has demonstrated Windows 11 ARM running on an M2 iPad Air using emulation, which has become much easier since the EU's Digital Markets Act (DMA) regulations came into effect. As spotted by Windows Latest, NTDev shared an instance of the emulation on social media and posted a video on YouTube (embedded below) demonstrating it in action. The achievement relies on new EU regulatory...
iOS 18

iOS 18.5 Includes Only a Few Changes So Far

Monday April 21, 2025 11:00 am PDT by
Apple seeded the third beta of iOS 18.5 to developers today, and so far the software update includes only a few minor changes. The changes are in the Mail and Settings apps. In the Mail app, you can now easily turn off contact photos directly within the app, by tapping on the circle with three dots in the top-right corner. In the Settings app, AppleCare+ coverage information is more...
iphone 16 pro models 1

17 Reasons to Wait for the iPhone 17

Thursday April 17, 2025 4:12 am PDT by
Apple's iPhone development roadmap runs several years into the future and the company is continually working with suppliers on several successive iPhone models simultaneously, which is why we often get rumored features months ahead of launch. The iPhone 17 series is no different, and we already have a good idea of what to expect from Apple's 2025 smartphone lineup. If you skipped the iPhone...
iphone 17 pro majin bu sky blue

iPhone 17 Pro Allegedly Coming in Sky Blue Color Used for MacBook Air

Tuesday April 22, 2025 4:08 am PDT by
Apple will unveil the iPhone 17 Pro in a new Sky Blue color, the same color that debuted on the latest M4 MacBook Air models Apple released in March. That's according to the leaker Majin Bu. Concept mockup from Majin Bu Writing on his website, Bu claims that "sources close to the supply chain confirm that several iPhone 17 Pro prototypes have been made in various colors, with Sky Blue...
maxresdefault

iPhone 17 Pro Launching Later This Year With These 12 New Features

Sunday April 13, 2025 7:52 am PDT by
While the iPhone 17 Pro and iPhone 17 Pro Max are not expected to launch until September, there are already plenty of rumors about the devices. Subscribe to the MacRumors YouTube channel for more videos. Below, we recap key changes rumored for the iPhone 17 Pro models as of April 2025: Aluminum frame: iPhone 17 Pro models are rumored to have an aluminum frame, whereas the iPhone 15 Pro and ...

Top Rated Comments

raythompsontn Avatar
9 months ago
Great, $60 million to CFIUS, $0 million to the people actually harmed. Fines are becoming cash cows for the other entities. That fine will not be paid by T-Mobile, but by the users through increased rates. The CFIUS effectively fined the users.
Score: 29 Votes (Like | Disagree)
Student of Life Avatar
9 months ago
They should also directly target fines to the executive officers involved. That way the feel the real burden of their own actions. Fining the company is nice in theory but in reality the fine will be moved to the consumer.
Score: 13 Votes (Like | Disagree)
coffeemilktea Avatar
9 months ago

Back in 2021 ('https://www.macrumors.com/2021/08/16/t-mobile-data-breach/'), T-Mobile suffered a major breach that impacted over 100 million of its users, just a year after it acquired Sprint.
"Suffered a major breach" As I recall, T-Mobile suffered three data breaches alone in 2021 (in January, August, and December), and a total of nine data breaches overall since the start of 2018.

At this point, their CEO might as well stand out on a street corner and hand out his customers' personal data, considering their cybersecurity measures are about as useful as a screen door on a submarine. Does T-Mobile recruit their security experts from the same place Boeing gets their engineers? ?
Score: 9 Votes (Like | Disagree)
antiprotest Avatar
9 months ago

How about some recompense for the customers? This almost reminds me of clash action lawsuits where the attorneys get millions and the plaintiffs get a ham sandwich.
You won't even get a slice of bread. And YOU are the one paying the fine for T-mobile failing to protect you. You are the one getting punished. So the hackers win, the CFIUS wins, t-mobile is ok, and you are both hacked and fined. It's so messed up.
Score: 9 Votes (Like | Disagree)
Apple_Robert Avatar
9 months ago
I don’t buy T-Mobile’s reply. Glad they were fined.
Score: 8 Votes (Like | Disagree)
jblank Avatar
9 months ago

You won't even get a slice of bread. And YOU are the one paying the fine for T-mobile failing to protect you. You are the one getting punished. It's so messed up.
Exactly. I'm very much a free-market capitalist but corporations have too much power and influence and too little accountability, in the US today. This "penalty" and all other fines/penalties like this, should go DIRECTLY to the customer.
Score: 7 Votes (Like | Disagree)