T-Mobile has now acknowledged that a server belonging to them was accessed illegally.
On Monday, T-Mobile shared via a blog post that they have determined that unauthorized access to some T-Mobile data occurred, but they did not yet know if personal customer data is involved.
This investigation will take some time but we are working with the highest degree of urgency. Until we have completed this assessment we cannot confirm the reported number of records affected or the validity of statements made by others.
Based on data that Vice previously investigated, it’s clear some T-Mobile customer data was involved, so at this point it may not be about if data was taken, but how much and what breadth.
Original coverage below.
T-Mobile may have suffered yet another data breach, and this one’s a doozie.
As reported by Vice, T-Mobile is apparently investigating a forum post claiming to have obtained data of over 100 million people from servers belonging to T-Mobile.
According to the seller, the data includes social security numbers, phone numbers, names, physical addresses, unique IMEI numbers, and driver licenses information.
Vice states that the seller is asking for 6 bitcoin, or around $270,000, for a subset of the data. That subset contains 30 million SSNs and driver’s licenses. They state that the backdoors used are already closed.
We are aware of claims made in an underground forum and have been actively investigating their validity. We do not have any additional information to share at this time.
T-Mobile to Motherboard
Separately, The T-Mo Report has discovered on twitter that the hackers have also allegedly discovered a backdoor tool called “Guardian”. They allege that this tool is “an illegal backdoor into the T-Mobile network”, though that’s an unconfirmed accusation at this point.
This is a developing story, so check back for updates as they come in.
