T-Mobile US apologises for data breach, announces partnerships with Mandiant, KPMG to prevent future incidents

News Wireless United States 30 AUG 2021
T-Mobile US apologises for data breach, announces partnerships with Mandiant, KPMG to prevent future incidents

T-Mobile US CEO Mike Sievert has issued an official apology for the recent data breach, which affected 54 million customers. The cause of the breach came from one malicious actor who was able to gain access to the company’s testing environments and then used brute force attacks and other methods to enter other IT servers that included customer data. No further details can be disclosed at this point, as the company is still actively coordinating with law enforcement on the criminal investigation, we are unable to disclose too many details.

Sievert reiterated that the breach, confirmed on 17 August, was contained, and that it did not expose an customer financial information, such as credit card information, debit or other payment information. However, some SSN, name, address, date of birth and driver’s license/ID information was compromised and the company is therefore taking strong action to prevent such an event from happening again. It has announced new, long-term partnerships with Mandiant, part of FireEye, and with consulting firm KPMG.

The CEO said the deals are part of a substantial multi-year investment to adopt best-in-class practices and transform the company’s approach to cybercrime. The company also wants to build a future-forward strategy to protect itself and its customers. Mandiant has been part of the forensic investigation since the start of the incident. The company will support T-Mobile as it develops its strategic plan to mitigate and stabilise cybersecurity risks. KPMG will meanwhile perform a thorough review of all T-Mobile security policies and performance measurement. The firm will focus on controls to identify gaps and areas of improvement. Mandiant and KPMG will together map out actions to protect customers and others from malicious activity.

New information web page

T-Mobile US added that it has published a web page to provide customers can protect themselves. The company is offering two years of free identity protection services with McAfee’s ID Theft Protection Service to all persons who may have been affected and is recommending customers sign up to its free scam-blocking protection through Scam Shield. The site also makes Account Takeover Protection available for postpaid customers, which makes it more difficult for customer accounts to be fraudulently ported out and stolen, and suggests other best practices and practical security steps like resetting PINs and passwords for all customers.


Categories:

Mobile

Companies:

McAfeeFireEyeT-Mobile US

Countries:

United States

Tags:

Data services, Launch, Product specifications & quality, Internet Access, Corporate strategy, Contract & orders

Related Articles

UNITED STATES 1 OKT 2024

T-Mobile US settles data breach investigations with fine, investment pledge

T-Mobile US has agreed to pay a civil penalty of USD 15.75 million to the Federal Communications Commission, to settle investigations into data breaches that occurred in 2021, 2022 and 2023. The company has also agreed to invest USD 15.75 million into its cyber security, to address what the FCC said were foundational security flaws. The company will use the money to improve its "cyber hygiene" and to adopt more robust architectures, like zero trust and phishing-resistant multi-factor authentication.

UNITED STATES 25 JUL 2022

T-Mobile US agrees to pay USD 350 million to settle data breach class action suit

T-Mobile US has settled the class action lawsuit related to the data breach that took place last summer at the mobile operator. The company said about 76.6 million US residents had some sort of records exposed.

UNITED STATES 13 JAN 2022

FCC plans to tighten rules for data breach disclosure

The FCC is looking at tightening its rules requiring operators to disclose data breaches. Chairwoman Jessica Rosenworcel has sent the proposal to other commission members for an upcoming vote, saying the new rules would better align the federal regulator with new data protection laws passed by states and take account of the increasing number of online threats. 

UNITED STATES 23 SEP 2021

T-Mobile US to award USD 25 mln worth of grants to small towns, together with 5G

T-Mobile US has pledged to give USD 25 million worth of small town grants over the next five years to "jumpst" community development projects to "re-energize" the towns. The grants are also part of company's commitment to bring 5G to rural areas of the US.

UNITED STATES 15 SEP 2021

Attorney General for Massachusetts to investigate T-Mobile US data breach

The Attorney General of Massachusetts, Maura Healey, has started an investigation to see if T-Mobile US had proper safeguards in place to protect consumer information and mobile device information. The operator's systems were hacked earlier this summer, with the breach affecting up to 54 million users. The AG urged current and former customers to take steps to protect themselves from identity theft or fraud.

UNITED STATES 23 AUG 2021

T-Mobile US to give Apple+ free for one year

T-Mobile US said it will give a full-year of Apple TV+ for free from 25 August, to customers on its Magenta and Magenta Max plans, and to Sprint Unlimited Plus and Sprint Premium subscribers. The offering will be available for all new and existing customers.

UNITED STATES 23 AUG 2021

T-Mobile US systems breach affects higher total of 54 million

T-Mobile US said in a SEC filling that an additional 6 million customers were affected by its recent systems hack, taking the total to 54 million. The company previously reported that the breach affected 7.8 million current T-Mobile postpaid customer accounts that included first and last names, date of birth, SSN, and driver's license/ID information was compromised.

UNITED STATES 20 AUG 2021

FCC to look into T-Mobile data breach

The US Federal Communications Commission (FCC) said it plans to investigate the data breach disclosed by T-Mobile US affecting over 47 million existing, former and prospective customers, according to Reuters. The carrier said the personal data of over 40 million former and prospective customers was stolen along with data from 7.8 million existing T-Mobile wireless customers.

UNITED STATES 18 AUG 2021

T-Mobile US finds personal data of almost 50 mln customers exposed in data breach

T-Mobile US has confirmed that personal data of millions of customers was exposed in the recent hack of its internal systems. Almost 50 million current and former customers were affected and are being informed of the breach.

UNITED STATES 17 AUG 2021

T-Mobile US confirms systems hack

T-Mobile US confirmed hackers gained access to some data in its systems. However, it said it had not yet determined that there is any personal customer data involved. 

UNITED STATES 16 AUG 2021

T-Mobile US looking into reports of privacy breach

T-Mobile US is investigating a claim on an online forum post which says the personal data of over 100 million users was breached, the company told Reuters. The company said it did not have more information to share at this time.

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.