Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Monday November 25 2019, @06:56AM   Printer-friendly
from the indecent-exposure dept.

More than 1 million T-Mobile customers exposed by breach – TechCrunch:

T-Mobile has confirmed a data breach affecting more than a million of its customers, whose personal data (but no financial or password data) was exposed to a malicious actor. The company alerted the affected customers but did not provide many details in its official account of the hack.

The company said in its disclosure to affected users that its security team had shut down “malicious, unauthorized access” to prepaid data customers. The data exposed appears to have been:

  • Name
  • Billing address
  • Phone number
  • Account number
  • Rate, plan and calling features (such as paying for international calls)

The latter data is considered “customer proprietary network information” and under telecoms regulations they are required to notify customers if it is leaked. The implication seems to be that they might not have done so otherwise. Of course some hacks, even hacks of historic magnitude, go undisclosed sometimes for years.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2, Interesting) by fustakrakich on Monday November 25 2019, @07:05AM (1 child)

    by fustakrakich (6150) on Monday November 25 2019, @07:05AM (#924435) Journal

    Name the companies that haven't been breached.

    Or is it a backdoor way of selling the data?

    --
    La politica e i criminali sono la stessa cosa..
    Starting Score:    1  point
    Moderation   +1  
       Interesting=1, Total=1
    Extra 'Interesting' Modifier   0  

    Total Score:   2  
  • (Score: 0) by Anonymous Coward on Tuesday November 26 2019, @03:24AM

    by Anonymous Coward on Tuesday November 26 2019, @03:24AM (#924775)

    I have often wondered if they did this...

    Deliberately choosing business grade software and procedures so as to give them plausible deniability when copies of their salted databases start showing up all over the net.

    It's what's got me so paranoid about giving accurate data to businesses. I know they can simply code their end to demand personal data from me, give me no option to refuse, but then I know they have no way to verify, so I give them bad data. Especially for birthdays or any other data that is not germane to the transaction .