According to Bleeping Computer, T-Mobile suffered a recent data breach, affecting a “very small number of customers.” This limited pool of customers were sent notifications in a SIM swap attack, a maneuver in which hackers take control of a victim’s phone number from the carrier itself.
T-Mobile shared the following statement with Bleeping Computer concerning the SIM swap attack affecting its customers:
We informed a very small number of customers that the SIM card assigned to a mobile number on their account may have been illegally reassigned or limited account information was viewed. Unauthorized SIM swaps are unfortunately a common industry-wide occurrence, however this issue was quickly corrected by our team, using our in-place safeguards, and we proactively took additional protective measures on their behalf.
Bleeping Computer
While T-Mobile did not share the number of customers targeting in this attack, it’s a disturbing development for the entire community. Once a hacker reassigns your phone number to their SIM, they can use that information to break 2FA and MFA security, access login information, change passwords, among other malicious activities.
Photo by Mika Baumeister on Unsplash