Sunset
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
I've been following this news item for the past couple of days and haven't seen it posted here. I searched but didn't find it.
I'm posting here, because folks may ignore it somewhat since so many data breaches have happened in the past from lots of companies.
This time it's DIFFERENT.
Part of the hack may have stolen PIN numbers for T-mobile accounts. With this PIN a person can perform a sim theft. (claim they are you, sim is broke, get a new sim with your existing phone number on a burner phone).
Then they have access to break many 2-factor authorization.
They can then go to every large bank/brokerage and put in your email and click on forgot password, receiving the code on their phone to change your password.
I noticed T-mobile reset PINs for pre-paid customers, as we got a text out of the blue that said they had done this. Pre-paid customers cannot reset the PIN online, maybe this is why they did it.
If you are a T-mobile customer, I recommend changing your password (can be up to 50 characters long) and the PIN (easy for post-paid customers, not available for pre-paid).
T-mobile admits they were breached.
https://www.t-mobile.com/brand/data-breach-2021?icid=MGPO_TMO_P_21DTASECRT_8SZBD38SJT3BHWAY26101
"We have determined that the types of impacted information include: names, drivers’ licenses, government identification numbers, Social Security numbers, dates of birth, and T-Mobile account PINs"
Their site does not make it obvious about the links to getting more information, a subtle hiding technique IMHO.
Here is another of their pages of great detail and offers to mitigate it:
https://www.t-mobile.com/news/netwo...tion-regarding-2021-cyberattack-investigation
This affects nearly ALL customers.
I'm posting here, because folks may ignore it somewhat since so many data breaches have happened in the past from lots of companies.
This time it's DIFFERENT.
Part of the hack may have stolen PIN numbers for T-mobile accounts. With this PIN a person can perform a sim theft. (claim they are you, sim is broke, get a new sim with your existing phone number on a burner phone).
Then they have access to break many 2-factor authorization.
They can then go to every large bank/brokerage and put in your email and click on forgot password, receiving the code on their phone to change your password.
I noticed T-mobile reset PINs for pre-paid customers, as we got a text out of the blue that said they had done this. Pre-paid customers cannot reset the PIN online, maybe this is why they did it.
If you are a T-mobile customer, I recommend changing your password (can be up to 50 characters long) and the PIN (easy for post-paid customers, not available for pre-paid).
T-mobile admits they were breached.
https://www.t-mobile.com/brand/data-breach-2021?icid=MGPO_TMO_P_21DTASECRT_8SZBD38SJT3BHWAY26101
"We have determined that the types of impacted information include: names, drivers’ licenses, government identification numbers, Social Security numbers, dates of birth, and T-Mobile account PINs"
Their site does not make it obvious about the links to getting more information, a subtle hiding technique IMHO.
Here is another of their pages of great detail and offers to mitigate it:
https://www.t-mobile.com/news/netwo...tion-regarding-2021-cyberattack-investigation
This affects nearly ALL customers.