In the United States, T-Mobile has announced a data breach caused by an email vendor being hacked that exposed the personal and financial information for some of its customers.
T-Mobile states that their email vendor was hacked and an unauthorized person was able to gain access to T-Mobile employee’s email accounts.
T-Mobile is now in the process of alerting customers to a malicious attack in which some customer information may have been access. On a webpage dedicated to the attack, T-Mobile explains that a “sophisticated attack” was made against its email vendor that led to unauthorized access to certain T-Mobile employee email accounts, some of which contained account info for T-Mobile customers and employees.
Some of the email accounts that were hacked contained T-Mobile customer information such as social security numbers, financial information, government ID numbers, billing information, and rate plans.
For those customers whose financial info was accessed, T-Mobile is offering two years of free credit monitoring and identity theft detection services from TransUnion. Customers must sign up by May 31, 2020.
T-Mobile says that it’s not aware of any evidence to suggest that information accessed was used to commit fraud.
After the attack was identified and shut down, T-Mobile began investigating the issue with the help of “leading cybersecurity forensics experts”. T-Mobile also reported the incident to federal law enforcement and is cooperating with their investigation.
T-Mobile is in the process of notifying customers whose accounts may have been affected by the attack. If you haven’t yet received a text but want to find out if your account was affected, you can contact customer support by dialing 611 from your T-Mobile phone or 1-800-937-8997 from any phone. You can also call these numbers to update the PIN on your account.