T Mobile logo on phone stock photo

Credit: Edgar Cervantes / Android Authority
  • A hacker claims to have stolen the personal information of 100 million T-Mobile customers.
  • Motherboard was able to see a sample of this information and verify its accuracy.
  • T-Mobile has confirmed the hack but doesn’t know the extent of damage it caused.

Update: August 17, 2021 (12:58 AM ET): T-Mobile has confirmed that “some” unauthorized access to its data did occur. However, the carrier has not yet determined is any personal customer data was compromised.

“We are confident that the entry point used to gain access has been closed, and we are continuing our deep technical review of the situation across our systems to identify the nature of any data that was illegally accessed,” the company wrote in a statement posted to its website.

T-Mobile says it cannot confirm the reported number of records affected as its investigation will take some time. The firm has promised to “proactively communicate” with customers once it has more details about the hack.

Original article: August 16, 2021 (1:26 AM ET): A massive data breach may have exposed the sensitive personal information of as many as 100 million T-Mobile customers. The information reportedly includes people’s social security numbers, phone numbers, physical addresses, IMEI numbers, and driver’s licenses.

According to Motherboard, the hacker claims to have obtained the information from multiple T-Mobile servers. The publication has seen samples of the data and confirms that it contains accurate details about T-Mobile users.

The hacker is also looking to make a pretty penny by selling this huge trove of personal data on an underground forum. The asking price is six bitcoins, which amounts to around $270,000, for a subset of data of 30 million T-Mobile customers.

“I think they already found out because we lost access to the backdoored servers,” the sellers told Motherboard, referring to T-Mobile’s actions against the breach. However, the hacker claims to have already downloaded the customer data locally. “It’s backed up in multiple places,” they said.

Related: How to cancel T-Mobile services

Meanwhile, T-Mobile has started investigating the matter. The company issued the following statement in response to the alleged hack:

We are aware of claims made in an underground forum and have been actively investigating their validity. We do not have any additional information to share at this time.

It’s unclear what’ll happen to the stolen data of millions of T-Mobile users. If it ends up being sold, it could potentially harm all the affected users and also spark lawsuits against T-Mobile.

We’ll update this article if T-Mobile confirms the hack or shares any other information about it.