T-Mobile Data Breach Exposed Phone Numbers, Call Records (bleepingcomputer.com) 14
T-Mobile has announced a data breach exposing customers' proprietary network information (CPNI), including phone numbers and call records. From a report: Starting this week, T-Mobile began texting customers that a "security incident" exposed their account's information. According to T-Mobile, its security team recently discovered "malicious, unauthorized access" to their systems. After bringing in a cybersecurity firm to perform an investigation, T-Mobile found that threat actors gained access to the telecommunications information generated by customers, known as CPNI. The information exposed in this breach includes phone numbers, call records, and the number of lines on an account.
Re: (Score:2)
Nobody of importance thinks their worth comes from their choice in phone service providers.
That's why you posted anonymous, even though you're logged in.
Meh (Score:2)
To a random cop or two-bit marketing sleazebag, having access to that much cell network information would be considered a degraded service situation.
Re: (Score:2)
Have you noticed that people who call Tor "TOR" are always morons? From Tor's official website: 'Tor is not spelled "TOR". Only the first letter is capitalized. In fact, we can usually spot people who haven't read any of our website (and have instead learned everything they know about Tor from news articles) by the fact that they spell it wrong.'
In order to distinguish their specific onion routing project from many others being developed at the time, the creators chose to call it The Onion Routing. For the morons out there, this would be where the fucking name TOR came from.
And this, is right from their website that YOU clearly haven't read that confirms this very fact:
"Roger called the project Tor, which stood for The Onion Routing"
https://www.torproject.org/abo... [torproject.org]
It's cute that whomever started the "Tor" non-profit org in 2006 felt the need to change the name, but when you really look at it, this would be
Almost Went a Calendar Year Without Hack (Score:4, Insightful)
Re: (Score:2)
''they almost went through 2020 without a hack''
Not quite. They've fucked up more than once in 2020.
Here's Jan 20 of this year [the deal was completed in April, it was TMobile owns this].
https://krebsonsecurity.com/20... [krebsonsecurity.com]
Here's March 4th.
https://www.cybersecurity-insi... [cybersecur...siders.com]
Re: (Score:2)
Here's Jan 20 of this year [the deal was completed in April, it was TMobile owns this
I looked it up and it turns out that January comes before April.
Re: (Score:2)
Close also works for artillery and nukes :-D.
Sarah Connor? (Score:2)
Remember the phone book? If only we could go back in time.
Reason utilities should not keep sensitive data (Score:2)
"T-Mobile states that the data breach did not expose account holders' names, physical addresses, email addresses, financial data, credit card information, social security numbers, tax IDs, passwords, or PINs."
Why is T-Mobile permitted to keep social security numbers or tax IDs? Once a credit check is done those numbers are no longer needed. They should be deleted as if they never had them.
Re: (Score:2)
They didn't say that they retain the information forever, they said that the information was not exposed.
What if was a breach of new users? It isn't true that once the credit check is done the information isn't needed; they might need to be able to audit the credit check process, and review the information on new users. So it might need to be retained somewhere for a few weeks.
They're a big company, whose business involves a lot of fraud protection for themselves, and cooperation with law enforcement. They
Suddenly glad... (Score:4, Funny)
Suddenly glad I use Sprint.
Wait.
Crap.