Article Details
Scrape Timestamp (UTC): 2023-09-21 11:13:12.538
Original Article Text
Click to Toggle View
T-Mobile app glitch let users see other people's account info. Today, T-Mobile customers said they could see other peoples' account and billing information after logging into the company's official mobile application. According to user reports on social media, the exposed information included customers' names, phone numbers, addresses, account balances, and credit card details like the expiration dates and the last four digits. As first reported by The Verge, some of the customers affected by this issue could see the sensitive information of multiple other people while logged into their own accounts. While a massive number of reports started surfacing earlier today on Reddit and Twitter, some T-Mobile customers also claimed that they've been experiencing this throughout the last two weeks. "Reported this issue when it first popped up here on Reddit over 2 weeks ago and sent pics of the other person's info to their security team. No response, but wow, just wow," one customer said. "I have brought this issue up with T-Mobile representatives in the past, as well as my issue with being routed to metro activation line when my phone services are suspended," another added. T-Mobile says a cyberattack did not cause this incident, and its systems were not breached. Also, despite the significant wave of customers reporting that they've been affected by this issue, T-Mobile says the incident had limited impact, only affecting less than 100 individuals. "There was no cyberattack or breach at T-Mobile," a spokesperson told BleepingComputer when asked for more details. "This was a temporary system glitch related to a planned overnight technology update involving limited account information for fewer than 100 customers, which was quickly resolved." Nine data breaches since 2018 In May, T-Mobile disclosed the second data breach since the start of 2023 after hundreds of customers had their personal information exposed between late February and March after attackers hacked into the carrier's systems. In January, the mobile carrier revealed another data breach after the sensitive info of 37 million customers was stolen using one of its Application Programming Interfaces (APIs). Since 2018, T-Mobile has been hit by seven other data breaches:
Daily Brief Summary
A glitch in T-Mobile's official mobile application reportedly allowed customers to gain access to other users' account and billing data. Customers claim to have viewed personally identifiable information (PII), including names, phone numbers, account balances, and partial credit card details, of other people.
The issue was raised on social media platforms Reddit and Twitter, with some customers noticing the problem two weeks prior to the influx of reports.
The number of people impacted is disputed. While some reports suggest a wide-scale exposure, T-Mobile claims that less than 100 individuals were affected.
According to a company spokesperson, the incident was not a result of a cyberattack or system breach, but rather a temporary glitch linked to a planned system update. The company has rectified the problem.
T-Mobile has experienced a series of data breaches since 2018. In May, T-Mobile disclosed its second data breach of the year, after hundreds of customers' personal information was exposed between late February and March due to a system hack. Prior to that, in January, data belonging to 37 million customers was stolen via a compromised API.