Industry - Data Breach
Executive Summary
T-Mobile confirmed a data breach affecting 47.8 million people, including 7.8 million current postpaid customers, over 40 million former or prospective customers, and 850,000 prepaid customers. Stolen data included names, dates of birth, Social Security numbers, and driver's license information, while 850,000 prepaid customers also had phone numbers and account PINs exposed. T-Mobile stated that payment card information was not compromised and reset PINs for affected prepaid accounts after di...
What Happened
In August 2021, T-Mobile experienced a data breach when an attacker named John Erin Binns gained unauthorized access through an unprotected GPRS gateway in Washington using a brute-force SSH attack. The breach exposed records of approximately 47.8 million people, including 7.8 million current postpaid customers, over 40 million former or prospective customers who had applied for credit, and 850,000 prepaid customers. T-Mobile discovered the breach after being alerted by a security research firm and online reports that customer data was being sold on a hacking forum, with the company confirming the incident publicly on August 16, 2021.
Who Is Affected
Current T-Mobile postpaid customers had their names, dates of birth, Social Security numbers, and driver's license information exposed, while former and prospective credit applicants had similar personal identifiers compromised. The 850,000 affected prepaid customers faced additional exposure of their phone numbers and account PINs, which T-Mobile reset immediately. Payment card information, account passwords, and phone numbers for postpaid customers were not compromised, and Metro by T-Mobile, former Sprint prepaid, and Boost customers were not affected.
Why It Matters
This breach represents one of the largest exposures of sensitive identity data in telecommunications history, affecting nearly 48 million individuals with highly sensitive information including Social Security numbers and driver's license details that enable identity theft and fraud. The incident was particularly significant because it was T-Mobile's seventh data breach in twelve years, demonstrating systemic security failures including lack of network segmentation and unprotected critical infrastructure. The breach ultimately contributed to T-Mobile receiving a $15 million fine in 2024, setting a precedent for regulatory consequences when telecommunications companies fail to protect customer data.
What You Should Do
If you are an affected T-Mobile customer, immediately enroll in the two years of free identity protection services the company is offering and monitor your credit reports closely for signs of fraudulent activity. Place a fraud alert or credit freeze with the three major credit bureaus (Equifax, Experian, and TransUnion) to prevent unauthorized accounts from being opened in your name. If you were a prepaid customer affected by the PIN exposure, verify that T-Mobile has reset your PIN and enable any additional account security features available, such as two-factor authentication.
AI-Assisted
Event summaries are generated by Claude AI from verified sources and reviewed by humans before publication.