T-Mobile suffered a security breach in December that may have exposed call-related information and phone numbers for some of its customers.
As reported by Bleeping Computer, the information affected by the breach did not include names on customers’ accounts, physical or email addresses, financial data, credit card information, Social Security numbers, tax IDs, passwords, or PINs, the company said.
“Our cybersecurity team recently discovered and shut down malicious, unauthorized access to some information related to your T-Mobile account. We immediately started an investigation, with assistance from leading cybersecurity forensics experts, to determine what happened and what information was involved. We also immediately reported this matter to federal law enforcement and are now in the process of notifying impacted customers.”
NOTICE OF SECURITY INCIDENT
Known as customer proprietary network information (CPNI), this data can include call records — such as when a call was made, for how long, the caller’s phone number and the destination phone numbers for each call, and other information that might be found on the customer’s bill.
But the company said that the hackers did not access names, home or email addresses, financial data, and account passwords (or PINs).
A spokesperson for T-Mobile said the breach happened in early December, and affects about 0.2% of all T-Mobile customers — or approximately 200,000 customers.
It’s the latest security incident to hit the cell giant in recent years.
