T-Mobile Data Breach: Over 40 Million Customers Exposed
Author: Trend Micro
This article is from Trend Micro.
The mobile communications giant T-Mobile has launched an investigation into the data breach that has resulted in millions of its customers’ personal data being made available for purchase online.
On Monday, August 16, T-Mobile posted a statement on its website confirming that data was “illegally accessed” from its computer systems. However, at the time, the company did not reveal the exact nature of the data. In the statement, the company assured its customers that it believes the entry point the hacker used to access the data has been closed.
In a later statement, the company said it believes the data of over 40 million current, previous, and prospective customers was accessed illegally.
When the news broke
A hacker named SubVirt made a post on an underground forum claiming to be in possession of the data. The hacker was asking for 6 bitcoin – which is around $270,000 – for a subset of the data containing information relating to 30 million T-Mobile customers. The leaked data is believed to include customer’s names, Social Security numbers, phone numbers, driver’s license information, IMEI numbers, and more. SubVirt hasn’t currently put all the data up for sale – the hacker claims to have the data of over 100 million T-Mobile customers!
We’re sure T-Mobile and the authorities are working tirelessly to track down SubVirt and ensure that none of the stolen data sees the light of day. Unfortunately, however, T-Mobile has recently been the victim of several other high-profile data breaches. In January of this year, hackers stole the call records of over 200,000 of its customers, and back in 2018, leaked personal data belonging to around 2 million of its customers was posted online.
Be extra cautious
If you believe that you may have been a victim of the recent T-Mobile data breach, please be hyper-aware of any suspicious activity relating to any of your online accounts or anybody who you don’t know contacting you regarding your personal information.
Report a Scam!
Have you fallen for a hoax, bought a fake product? Report the site and warn others!
Scam Categories
Help & Info
Top Safety Picks
Your Go-To Tools for Online Safety
- ScamAdviser App - iOS : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on iOS
- ScamAdviser App - Android : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on Android.
- NordVPN : NordVPN keeps your connection private and secure whether you are at home, traveling, or streaming from another country. It protects your data, blocks unwanted ads and trackers, and helps you access your paid subscriptions anywhere. Try it Today!
Popular Stories
As the influence of the internet rises, so does the prevalence of online scams. There are fraudsters making all kinds of claims to trap victims online - from fake investment opportunities to online stores - and the internet allows them to operate from any part of the world with anonymity. The ability to spot online scams is an important skill to have as the virtual world is increasingly becoming a part of every facet of our lives. The below tips will help you identify the signs which can indicate that a website could be a scam. Common Sense: Too Good To Be True When looking for goods online, a great deal can be very enticing. A Gucci bag or a new iPhone for half the price? Who wouldn’t want to grab such a deal? Scammers know this too and try to take advantage of the fact. If an online deal looks too good to be true, think twice and double-check things. The easiest way to do this is to simply check out the same product at competing websites (that you trust). If the difference in prices is huge, it might be better to double-check the rest of the website. Check Out the Social Media Links Social media is a core part of ecommerce businesses these days and consumers often expect online shops to have a social media presence. Scammers know this and often insert logos of social media sites on their websites. Scratching beneath the surface often reveals this fu
Disclaimer: This article was originally published in 2018 and has been updated in October 2025 to reflect more current information, resources, and advice. Scams and recovery options continue to evolve, so always double-check with your bank, payment provider, or local consumer protection authority for the latest guidance. So the worst has come to pass - you realise you parted with your money too fast, and the site you used was a scam - what now? Well first of all, don’t despair!! If you think you have been scammed, the first port of call when having an issue is to simply ask for a refund. This is the first and easiest step to determine whether you are dealing with a genuine company or scammers. Sadly, getting your money back from a scammer is not as simple as just asking. If you are indeed dealing with scammers, the procedure (and chance) of getting your money back varies depending on the payment method you used. PayPal Debit card/Credit card Bank transfer Wire transfer Google Pay Bitcoin PayPal Good news: PayPal gives you strong protection. You can file a dispute within 180 days of your purchase. You can get a refund if: Your order never arrives, and the seller cannot provide proof of delivery. The scammer sends you something completely different (e.g., a controller instead of a PlayStation). The product condition was misrepresented (sold as new but arrives used). The item is missing undisclosed parts. The item is counterfeit. Start your claim directly through Pay