T-Mobile admits there was some entry into its system, however what was stolen and whether it was 100+ million customer records still is being investigated.
The hack announcement from T-Mobile came after someone posted data for sale on a forum. The data the hacker claims includes Social Security Numbers, phone numbers, name, address, IMEI, and driver’s license numbers.
According to Motherboard/Vice when in communication with the seller of the info, they provided accurate information when requesting a lookup.
So yeah, good chance that all your data is out there, again, but this time with IMEI numbers so it’ll be so much easier to clone your phone for two-factor authentication hijacking, call interception, etc. And with your Social Security and driver’s license number, the sky’s the limit… again.
Who’s betting on a backup server that was sitting somewhere between Sprint and T-Mobile’s networks that was provisioned with the password “pindrop”?
[T-Mobile | Vice/Motherboard]
