Recently, a large subset of the information compromised in the breach was for sale on the “dark web” - a hidden portion of the internet where cyber criminals buy, sell and track personal information.
Millions of people had their names, dates of birth, Social Security numbers and driver’s license information compromised. The breach affected more than 50 million individuals nationwide. 17, 2021, T-Mobile reported a massive data breach compromising the sensitive personal information of millions of current, former and prospective T-Mobile customers. “We want to make sure Washingtonians have the tools they need to protect themselves in the wake of a data breach.” “Data breaches continue to be an escalating threat to Washingtonians,” Ferguson said. The data breach affected approximately 2 million Washingtonians.
OLYMPIA - Attorney General Bob Ferguson urges all Washingtonians who believe they were impacted by the data breach announced by T-Mobile in August 2021 to take appropriate steps to protect their personal information from identity theft. Large amounts of personal information offered for sale on the “dark web” This includes email accounts, cell phone numbers, bank accounts, your tax ID, and more. Read our additional tips to protect your digital identity.įor regular updates and official news from T-Mobile, visit their Newsroom blog here. In its simplest form, your digital identity is made up of a whole host of things that can be traced back to you and who you are. 5. Take further steps to protect your digital identity T-Mobile will be contacting impacted customers directly. However, cybercriminals and scammers may also take advantage of this data breach to scam people using email. They will often pose as major corporations or other trustworthy entities to trick you into willingly providing information like website login credentials or, even worse, your credit card number. We’ve provided additional information here to help you to recognize legitimate emails. Be wary of phishing attempts through email App-based multi-factor authentication, using a solution like Google’s Authenticator, allows you to authenticate your identity from other devices, instead of having authentication tied to your mobile phone number.
With an account takeover, two-factor authentication through text message becomes vulnerable, allowing hackers potential access to bank accounts, among others. Access to IMEI numbers could enable SIM-swap attacks which make account takeovers possible. One lesser-known type of data stolen in the breach was International Mobile Equipment Identity (IMEI) numbers, which allow individual devices to be identified on a mobile network. Use app-based multi-factor authentication The company is also encouraging customers to sign up for their Account Takeover Protection service.
The free 24 months of identity protection will be delivered directly by T-Mobile. Should identity theft occur, the identity protection service includes fraud resolution support and identity theft insurance for peace of mind. If info is found on the dark web, customers will receive guidance to help secure online accounts. This identity protection service gives customers the ability to monitor personal info, including your SSN, bank account numbers, debit cards, email addresses, phone numbers, and more. Take advantage of the free identity theft protection being offered by T-MobileĪs part of T-Mobile’s response, they are offering an identity protection service exclusively to all affected customers, free for two years. This is the immediate step all affected subscribers should take.
Change your T-Mobile password and security PIN Here’s what you can do to secure your identity 1. T-Mobile, the popular US mobile phone service provider, recently confirmed a data breach affecting 7.8 million current customers and 40 million records from past or prospective customers. The stolen data included customer names, dates of birth, social security numbers, and driver’s license information. Fortunately, subscriber credit card information and other financial details were not affected in the breach.Įven though financial data was spared in the breach, the types of information stolen, along with the vast volume of affected subscribers mean that all T-Mobile subscribers should take immediate action to secure their identities and accounts online.