from Hacker News

T-Mobile says hacker accessed personal data of 37M customers

by kuter on 1/19/23, 11:02 PM with 11 comments

  • by NoPicklez on 1/20/23, 12:32 AM

    Very interesting, also because here in Australia our second largest Telco suffered a data breach late last year through an unsecured API. Which was I believe our largest data breach in history.

    Managed to steal very similar information, but also included drivers license numbers and some people's passport numbers. Interestingly, for a while there was a post that allowed us to query the suspected API once authentication with our own accounts, which pulled down our drivers license numbers.

    It's prompted a major investigation into identity legislation and data security. Our government bodies started allowing people to change their driver's license online. Furthermore the breached Telco started providing free credit monitoring services.

    I wonder if the success from that hack has prompted attackers to pay more attention to unsecured API's. Not that it wouldn't have been a topic before.

  • by chevman on 1/20/23, 1:49 AM

    Not suprising - Tmobile keeps sending me a paper bill for -$2.19 (ie I have a credit) since I cancelled my service with them 6+ months ago.

    Have tried to get them to stop with no success!

  • by nocsi on 1/20/23, 2:26 AM

    Credit monitoring might as well be free & unlimited. Nobody really cares about their data being leaked. Too abstract of an idea for folks. But people care if you go through their trash for less data

  • by stuckkeys on 1/20/23, 1:46 AM

    Sick and tired of these big organizations leaking sensitive data. They need to be held accountable. 20k per customer per incident.

  • by craftkiller on 1/20/23, 1:49 AM

    Again? Does T-Mobile just not give a fuck?