Intro: United States telecom giant T-Mobile’s data has been breached by the hacker, and he has demanded 6 BTC ($287,000) in exchange for some data. The data that has been breached is sensitive and carries some important numbers, social media handles, physical addresses and much more.
T-Mobile, the U.S. telecom giant’s data has been breached that might have compromised over 100 million users. According to Vice’s Motherboard, T-Mobile is investigating the alleged violation of privacy reported by the author on a secret forum.
As per the 15 August report, hackers leaked the data of more than 100 million customers on the T-Mobile server. The hacker has demanded 6 BTC, approximately US $287,000 in current prices, in exchange for some data.
Breach of sensitive data
The data which has been stolen include social security numbers, phone numbers, names, physical addresses, unique IMEI numbers and driving licence information. According to the seller, they are privately selling most of the data currently, but will give back the subset of the data containing 30 million social security numbers and driver licences for the BTC ransom.
The hacker quoted T-Mobile’s warnings and possible responses to the violations. He said that they have already found out because they lost access to the backdoored servers. As per the T-Mobile spokesperson, the company is aware of claims made in an underground forum and is actively investigating their validity, adding they do not have any additional information to share at this time.
This is not the first time that T-Mobile has been attacked by scammers or at the centre of the cybersecurity scandal. In February, a victim who lost $450,000 worth of Bitcoin in a SIM exchange attack sued the wireless operator.
When the victim’s mobile phone number is stolen, a SIM exchange attack occurs. This can later be used to hijack the victim’s online financial and social media accounts by intercepting automated messages or phone calls that are used as two-factor authentication security measures.
Calvin Cheng, the victim of the SIM swap attack, has held T-Mobile responsible for failing to implement adequate security policies to prevent unauthorized access to his customers’ accounts. In July 2020, a CEO of a crypto firm sued T-Mobile over a series of SIM-Swaps that resulted in the loss of $8.7 million worth of digital assets.
In April 2021, hardware wallet manufacturer Ledger, faced a class-action lawsuit regarding the major data breach that witnessed the breach of personal data of 270,000 customers between April and June 2020.