T-Mobile revealed additional details about the cyber attack against its mobile network that exposed personal details of its customers.
T-Mobile confirmed that it located and closed the access point that was used to illegally gain entry to servers. Bellevue, Washington-based T-Mobile did not reveal the name of server suppliers.
T-Mobile confirms that the data stolen from server systems included some personal information. “We have no indication that the data contained in the files included any customer financial information, credit card information, debit or other payment information,” T-Mobile said.
Some of the data accessed did include customers’ first and last names, date of birth, SSN, and driver’s license/ID information for a subset of current and former postpay customers and prospective T-Mobile customers.
Its preliminary analysis is that approximately 7.8 million current T-Mobile postpaid customer accounts’ information appears to be contained in the stolen files, as well as just over 40 million records of former or prospective customers who had previously applied for credit with T-Mobile.
“No phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers, T-Mobile said.
Approximately 850,000 active T-Mobile prepaid customer names, phone numbers and account PINs were also exposed. T-Mobile already proactively reset all of the PINs on these accounts to help protect these customers, and we will be notifying accordingly right away. No Metro by T-Mobile, former Sprint prepaid, or Boost customers had their names or PINs exposed.
We have also confirmed that there was some additional information from inactive prepaid accounts accessed through prepaid billing files. No customer financial information, credit card information, debit or other payment information or SSN was in this inactive file.