![]() “Repeated data breaches such as this can have a significant impact on the reputation of organizations, and T-Mobile certainly seems to be an organization that is becoming synonymous with massive data breaches,” says Erich Kron, security awareness advocate at KnowBe4. Misconfigured API the culprit of T-Mobile’s data breach Claiming that it has “made substantial progress to date,” the company added that it will continue to invest further to strengthen its cybersecurity. In its SEC filing, T-Mobile said that in 2021 it kicked off a “substantial multi-year investment” to work with external security providers to improve its cybersecurity capabilities. ![]() Over the past several years, the company has suffered several security incidents, including a bug on its website in 2018 that allowed anyone to access customer data, a breach in 2021 that exposed the personal data of almost 50 million people, and a series of breaches carried out by the Lapsus$ cybercrime group in March of 2022. Data breaches not new for T-Mobileĭata breaches and hacks are hardly a new phenomenon for T-Mobile. 25 of last year, the carrier said, adding that it stopped the malicious activity within a day after discovering it and that it’s currently working with law enforcement to investigate further. SEE: Mobile device security policy (TechRepublic Premium) Fortunately, the API did not leak other personal data such as payment card numbers, Social Security numbers, driver’s license numbers, passwords, or PINs, according to T-Mobile. In its filing, the company didn’t name the API that was affected or explain how the hackers were able to exploit it. Recommendations for T-Mobile customers and organizations that work with APIs.T-Mobile’s stolen customer data a gold mine for hackers.Misconfigured API the culprit of T-Mobile’s data breach.Securities and Exchange Commission, noting that the impacted API provided the hackers with names, billing addresses, email addresses, phone numbers, dates of birth, T-Mobile account numbers, and plan features for 37 million current postpaid and prepaid customers. 19, T-Mobile revealed the breach in a filing with the U.S. T-Mobile and millions of its customers have been the victims of another data breach - this one apparently carried out by hackers who knew how to exploit an application programing interface used by the carrier. The criminals took advantage of an API to grab personal details such as customer names, billing addresses, email addresses, phone numbers, dates of birth, and T-Mobile account numbers. How hackers stole the personal data of 37 million T-Mobile customers
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |