Cyber criminals that hacked T-Mobile’s database have stolen information from more than 40 million people, according to a company spokesperson.
The information that was stolen includes Social Security numbers and driver's licenses.
The company confirmed the breach earlier this week in response to reports of customer information appearing for sale on a hacking forum.
“Importantly, no phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers,” T-Mobile said in a statement.
While T-Mobile maintains only 40 million people’s information was compromised, the hackers claim they have closer to 100 million people’s sensitive data.
Have your personal details been compromised? Get in touch: emma.munbodh@mirror.co.uk
Neither group said that banking details have been compromised.
“We have no indication that the data contained in the stolen files included any customer financial information, credit card information, debit or other payment information,” T-Mobile added.
However, last names, birthdates, and driver's license information was obtained.
PINs, names, and phone numbers of approximately 850,000 of its pre-paid customers was also stolen.
On Wednesday, T-Mobile said it had reset the PIN codes of all of the compromised prepaid accounts and recommended to its postpaid customers that they do the same.
T-Mobile said it plans to offer two years of free identity protection services from McAfee to affected customers.
“We take our customers’ protection very seriously and we will continue to work around the clock on this forensic investigation to ensure we are taking care of our customers in light of this malicious attack,” T-Mobile said in a statement.
Anyone with T-Mobile account is advised to change their passwords to reset their accounts.
If you notice any suspicious activity on your bank statement, report this to Action Fraud, T-Mobile and your bank immediately.
Customers are also being warned that they are at a heightened risk of phone scams.
Security expert, Jack Chapman of Threat Intelligence, said: “This could be one of the most serious leaks of consumers’ sensitive information we’ve seen so far this year, potentially affecting 100 million people.
"Cybercriminals are using T-Mobile’s data to line their pockets, and unfortunately, it’s T-Mobile’s customers who will pay the price," Jack Chapman of Threat Intelligence added.
"I would urge any customers who have been affected by this breach to be wary of any unexpected communications they might now receive, whether that’s over email, text messages or phone calls.
"Follow-up attacks may utilise the information accessed through this data breach to trick people into sharing more personal data that can be used for identity and financial fraud."
