Man
Professional
- Messages
- 3,046
- Reaction score
- 572
- Points
- 113
T-Mobile has agreed to pay a $15.75 million settlement to the US Federal Communications Commission (FCC) after a series of data breaches that exposed the personal information of millions of customers.
This penalty is linked to multiple cybersecurity incidents that took place between 2021 and 2023, all of which the FCC investigated.
Here’s a brief timeline of the key breaches involving T-Mobile:
August 2021: T-Mobile announced that a hacker gained access to its systems, compromising sensitive data, including Social Security numbers, for 7.8 million current customers and about 40 million former and potential customers. In 2022, the company settled a related class-action lawsuit for $350 million.
Late 2022: An attacker accessed a management platform used by T-Mobile’s mobile virtual network operator. This breach involved phishing tactics that targeted a T-Mobile employee.
May 2023: T-Mobile revealed that hackers accessed hundreds of customer accounts between late February and March. They did this by stealing the login credentials of several retail employees.
January 2023: T-Mobile admitted that a configuration error allowed a hacker to access the personal and account information of tens of millions of customers through an API.
FCC Chairwoman Jessica Rosenworcel highlighted the importance of strong cybersecurity in mobile networks, stating that consumers' data must be protected. She warned that companies must improve their security systems or face consequences.
Furthermore, T-Mobile's Chief Information Security Officer will regularly report to the board about the company’s cybersecurity status and the risks involved. These commitments are enforceable, showing the FCC's dedication to ensuring better security in the telecommunications industry.
This penalty is linked to multiple cybersecurity incidents that took place between 2021 and 2023, all of which the FCC investigated.
Here’s a brief timeline of the key breaches involving T-Mobile:
August 2021: T-Mobile announced that a hacker gained access to its systems, compromising sensitive data, including Social Security numbers, for 7.8 million current customers and about 40 million former and potential customers. In 2022, the company settled a related class-action lawsuit for $350 million.
Late 2022: An attacker accessed a management platform used by T-Mobile’s mobile virtual network operator. This breach involved phishing tactics that targeted a T-Mobile employee.
May 2023: T-Mobile revealed that hackers accessed hundreds of customer accounts between late February and March. They did this by stealing the login credentials of several retail employees.
January 2023: T-Mobile admitted that a configuration error allowed a hacker to access the personal and account information of tens of millions of customers through an API.
FCC Chairwoman Jessica Rosenworcel highlighted the importance of strong cybersecurity in mobile networks, stating that consumers' data must be protected. She warned that companies must improve their security systems or face consequences.
Furthermore, T-Mobile's Chief Information Security Officer will regularly report to the board about the company’s cybersecurity status and the risks involved. These commitments are enforceable, showing the FCC's dedication to ensuring better security in the telecommunications industry.
