After a 2021 cyberattack exposed millions of customers’ personal information, T-Mobile agreed to ato resolve claims that its negligence led to the breach. It was the second largest data breach settlement in US history, after that of Equifax. .
The last day to submit a claim for part of the massive payout was Monday, January 23, 2023. Just days before that deadline, however, T-Mobile announced another cyberattack on January 19, which affected at least 37 million current customers. .
T-Mobile attorney Kristy Brown called the latest attack “an entirely separate and distinct security incident” from the 2021 breach, adding that potential victims could seek compensation separately.
For more rulesfind out if you are eligible for Avis’on hidden charges or AT&T’s $60 million
What happened during the T-Mobile cybersecurity incident?
On August 15, 2021, T-Mobile reported that it had suffered. The exact number of customers affected isn’t immediately clear: T-Mobile said only the names, addresses and PINs of about 850,000 people were “compromised.”
According to court documents, however, around 76.6 million people had their data exposed. And a hacker selling the information on the dark web told Vice that they have personal information about more than 100 million T-Mobile users.
T-Mobile did not admit any wrongdoing but, in a statement shared with CNET, said “like any company, we are not immune to these criminal attacks.”
John Binns, an American living in Turkey, eventually took responsibility for the offence, theon T-Mobile since 2015.
“I was freaking out because I had access to something important,” Binns told The Wall Street Journal. “Their security is terrible.”
According to plaintiffs in a class action lawsuit, T-Mobile should better protect sensitive consumer data.
“Instead, T-Mobile suffered one of the largest and most consequential data breaches in U.S. history, compromising the sensitive personal information of more than 75 million consumers,” their report reads. complaint.
In March 2022, T-Mobile also fell preywho accessed employee accounts and attempted to find T-Mobile accounts associated with the FBI and the Department of Defense.
Who was entitled to money in the settlement?
T-Mobile has identified 76 million past and present customers in the United States whose information was potentially compromised in the data breach, though the actual number could be even higher. (You can confirm your status by emailing the Settlement Administrator or by calling 833-512-2314.)
Most class members were notified of the proposed settlement by mail.
According to Law.com, less than 2 million class members have filed a claim, which is well below the average response rate given the number of people affected.
What did T-Mobile offer customers affected by the data breach?
Current and former T-Mobile customers were eligible for a $25 cash payment, according to the settlement website. California residents were entitled to $100.
If you had to spend time or money to recover from fraud or identity theft related to the breach, you could be reimbursed up to $25,000, although you must submit detailed documentation in support of your claim.
T-Mobile has offered two free years of McAfee’s Identity Theft Protection service to anyone who thinks they’ve been a victim of the hack. It also agreed to invest $150 million in improving its data security.
What is T-Mobile doing to protect against future data breaches?
T-Mobile has doubled down on its fight against hackers, the company said in its July 22 statement. It bolsters employee training, collaborates on new protocols with industry experts like Mandiant and Accenture, and creates a cybersecurity office that reports directly to CEO Mike Sievert.