T-Mobile US has suffered its second data breach of 2023. According to BleepingComputer, the mobile carrier sent a notification letter to its customers after discovering that attackers had accessed the personal information of hundreds of customers for more than a month starting at the end of February. The letter stated that measures had been put in place to alert the company to unauthorized activity, and that a small number of T-Mobile accounts had been affected.
The data exposed included full names, contact information, account numbers and associated phone numbers, T-Mobile account PINs, social security numbers, dates of birth, balance owed, and internal codes used to manage customer accounts. No financial account information or calling information was leaked.
To protect against identity theft and phishing attacks, T-Mobile has reset the affected customers’ PIN codes and is offering them two years of free credit monitoring and identity theft services. The company has also acknowledged that it must continue to make improvements to stay ahead of bad actors. Since 2018, seven other data breaches have been disclosed, including one that compromised the information of roughly 3 percent of all T-Mobile customers.
