37 million T-Mobile customers were hacked | CNN Business

New York
CNN
—

T-Mobile said a “bad actor” accessed the personal data of 37 million current customers in a data breach in November.

In a regulatory filing Thursday, the company said the hacker stole customer data that included names, billing addresses, emails, phone numbers, dates of birth, T-Mobile account numbers and information describing the type of service you have with your wireless carrier. T-Mobile said no social security numbers, credit card information, government identification numbers, passwords, PINs or financial information were exposed.

However, this information can be combined with other stolen or publicly available information and used by fraudsters to steal people’s identities or money. T-Mobile said it is working with law enforcement and has begun notifying customers whose information may have been breached.

The wireless carrier did not indicate what it could do to remedy the situation. It noted that it could be on the hook for “significant expenses” from the hack, though the company said it does not expect the charges to have a material effect on T-Mobile’s bottom line.

After T-Mobile ( TMUS ) learned of the data breach, the company said it hired an outside cybersecurity team to investigate. T-Mobile ( TMUS ) was able to discover the source of the breach and stop it a day after the hack was discovered. The company says it continues to investigate the breach, but believes it is “fully contained.” He also noted that T-Mobile’s ( TMUS ) systems and network did not appear to have been hacked.

“Protecting our customers’ data remains a top priority,” T-Mobile said in a statement. “We will continue to make substantial investments to strengthen our cybersecurity program.”

The company noted that it began a “substantial, multi-year investment” in 2021 to improve its cybersecurity capabilities and protections.