A hacking group called Lapsus$ has claimed they’ve breached T-Mobile.
It’s the 7th time in 4 years that T-Mobile has been hacked. Journalist Brian Krebs, first reported this one, has obtained a week’s worth of private chat messages between the members of Lapsus$. The messages were sent in a private Telegram channel.
The messages show Lapsus$ accessed T-Mobile’s network via compromised employee accounts.
The hackers were able to carry out SIM-swap attacks and were able to reassign a cell phone number to a device under their control. This allowed them to intercept phone calls and text messages that can be used to obtain two-factor authentication codes and hack into other customer accounts like banking.
“Several weeks ago, our monitoring tools detected a bad actor using stolen credentials to access internal systems that house operational tools software,” per T-Mobile’s statement. “Our systems and processes worked as designed, the intrusion was rapidly shut down and closed off, and the compromised credentials used were rendered obsolete.”
T-Mobile has confirmed 6 previous data breaches since 2018.
—
NWIDA members, contact us today if you need our assistance and if you’re not yet a member, we invite you to join today. | |
Want news like this delivered to your inbox? Click HERE | |
Want news like this in your RSS feed? Click HERE | |
Want news like this delivered to your Alexa Flash Briefing? Click HERE | |
Join us on Reddit – Click HERE | |
Subscribe to our YouTube Channel – Click HERE |