In a blog post released over the weekend, the malicious actors said they had started to sell the stolen information on the dark web.
The data, which supposedly includes phone numbers, names, physical addresses, unique IMEI numbers, and driver licences information, is being sold for six bitcoins, which equates to around £194,000.
According to US news outlet Motherboard, who first reported the breach, the forum post does not mention T-Mobile by name, but the hacker later claimed that they have obtained data of customers and that the data came from T-Mobile servers.
In a short statement to DIGIT, T-Mobile said: “We are aware of claims made in an underground forum and have been actively investigating their validity.
“We do not have any additional information to share at this time.”
Once more into the breach
This is not the first time that T-Mobile has been the target of hackers looking to steal sensitive information.
In early December 2021, the firm announced the possible breach of customer call records and potentially private information.
Additionally, in August 2018 hackers gained access to personal information from around 2m T-Mobile customers, including names, billing post-codes, phone numbers, email addresses, account numbers, and account type of users.
This latest data breach will come as no surprise to many after a long line of similar high-profile data thefts over the last few years.
Firms around the world have been left reeling after hackers leaked the data of millions of customers, such as British Airways and Marriott hotels.
Just last week, hackers stole and released the private details of around one million people’s credit cards in a major breach that affected hundreds of banks worldwide.
Hackers appear to have stolen the data as part of a ‘giveaway’ promoting a new underground site run by the criminal group called AllWorldCards.
- New research casts doubts on Scottish cyber resilience
- Data breach costs have broken records during coronavirus pandemic
- British Airways reaches settlement on data breach compensation
However, more dangerously than this, hackers have now begun targeting important infrastructure. In May, both the Irish health services and the US Colonial pipeline were targeted by malicious actors, putting lives at risk and affecting global fuel supplies.
Commenting on the latest T-Mobile breach, Craig Hattersley, CTO at SOC.OS said: “If true, this is a huge breach from a reputable technical supplier who, the industry expects, would have significant barriers in place to prevent such incidents.
“Although this is likely to hit T-Mobile in the short term with consumer confidence and mid-term with a significant fine, it is unlikely to affect the company in the long term. This is just one of an increasing number of breaches that consumers are unfortunately subject to.
“Given the number of incidents and relatively low impact on end consumers, even those still receiving spam phone calls after the Talk-Talk breach, this will largely be forgotten.
“It seems that the industry is unable to self-regulate to stop these breaches, is it time for the government to step in and act tough?”