In a statement Friday, T-Mobile admitted that hackers have breached its systems. While no financial data, passwords or social security numbers were compromised, T-Mobile says that “You should know that some of your personal information may have been exposed, which may have included one or more of the following: name, billing zip code, phone number, email address, account number and account type (prepaid or postpaid).”
Dear Customer –
Out of an abundance of caution, we wanted to let you know about an incident that we recently handled that may have impacted some of your personal information.
On August 20, our cyber-security team discovered and shut down an unauthorized access to certain information, including yours, and we promptly reported it to authorities. None of your financial data (including credit card information) or social security numbers were involved, and no passwords were compromised. However, you should know that some of your personal information may have been exposed, which may have included one or more of the following: name, billing zip code, phone number, email address, account number and account type (prepaid or postpaid).
If you have questions about this incident or your account, please contact Customer Care at your convenience. If you are a T-Mobile customer, you can dial 611, use two-way messaging on MyT-Mobile.com, the T-Mobile App, or iMessage through Apple Business Chat. You can also request a call back or schedule a time for your Team of Experts to call you through both the T-Mobile App and MyT-Mobile.com. If you are a T-Mobile For Business or Metro PCS customer, just dial 611 from your mobile phone.
We take the security of your information very seriously and have a number of safeguards in place to protect your personal information from unauthorized access. We truly regret that this incident occurred and are so sorry for any inconvenience this has caused you.
The wireless carrier said its cybersecurity team discovered the unauthorized access Monday and reported it to authorities. A spokesperson for the company says that the breach affected “slightly less than” 3 percent of its 77 million customers –amounting to about 2 million.
All impacted T-Mobile customers have received or will receive a notification about the data breach, and the company encouraged people to reach out to its customer service line or contact employees through their T-Mobile App or at MyT-Mobile.com to learn more.
T-Mobile CEO John Legere said on Twitter that it’s “always a good idea to regularly change account passwords”
T-Mobile was impacted by a much larger data breach back in 2015 when Experian, the consumer credit reporting agency that processed credit applications for the company, was breached. That hack impacted 15 million customers — and compromised customers’ social security numbers as well as information about their drivers’ licenses passports. T-Mobile’s breach is just the latest in a string of hacks targeting companies in recent years.
Ilia Kolochenko, CEO of High-Tech Bridge, said: “This security incident favourably stands out among many others by prompt detection and transparent disclosure. Many of the recent data breaches, including the most disastrous ones, were discovered weeks ago but then announced months after the occurrence. T-Mobile serves as a laudable example of prompt incident response. This, however, does not absolve them from accountability for the breach and further cybersecurity enhancement to prevent similar incidents in the future.”