Hacker who looted millions of customer records from T-Mobile confirms that "their security is awful"

beschizza · August 27, 2021, 11:39am

Originally published at: Hacker who looted millions of customer records from T-Mobile confirms that "their security is awful" | Boing Boing

…

Slide · August 27, 2021, 1:24pm

It feels so good to have unique 20 character passwords in 1Password.

jaded · August 27, 2021, 1:46pm

If everything else about a company seems cheap, you can bet their IT security is underfunded.

The reverse is not true, of course. If they have money, their IT security is likely also not properly funded.

Pretty much if you’re dealing with any given company, chances are good their IT security is poor.

Neville_Holland · August 27, 2021, 2:05pm

I’ve looked up the meaning and I still don’t know what it means. Sometimes I have the reading level of a new-born.

jaded · August 27, 2021, 2:15pm

And I apologize. It was the wrong word. Lately I’ve had the writing skills of a newborn.

knoxblox · August 27, 2021, 3:15pm

…security is awful

Full House Reaction GIF

megalodon · August 27, 2021, 4:38pm

T-Mobile is responsible for giving my cell phone number to a scam fraudster when they called up and claimed to have lost the password. F#cking piece of sh#t company.

megalodon · August 27, 2021, 4:40pm

That won’t stop T-Mobile from sending a one-time code to somebody else to change that password. Don’t ask how I know that.

Slide · August 27, 2021, 6:56pm

I won’t ask but am curious to hear the details. Did the one time code go to your email or phone or someone previously not on the account.

Thermironic · August 27, 2021, 10:14pm

Social engineering a telco is a right of passage in some corners. They’ve been consistently notorious at just assuming that they were sufficiently sacred to never need strong security, and it’s finally catching up with the industry.

bferrell · August 27, 2021, 10:29pm

He’s being interviewed by a “journalist”?
How come it’s not a cop/prosecutor?

SP123 · August 27, 2021, 11:15pm

Only time I’ve been a victim of identity theft was due to TMobile. They actually stopped someone one day because the person mispronounced the name on my account. Scammer went into a store in FL, where I haven’t been for 20 years, and they called me to ask if it was authorized and I said hell no and somehow they let the person walk out of the store. Next day they went into another store and purchased four of the newest iPhone, no money down, and financed $2800 on my account. I think Tmobile just ate the loss.

8-p · August 27, 2021, 11:56pm

The exact same thing happened to me. They eventually refunded my account after some back and forth with their fraud team.

sarc · August 28, 2021, 7:44am

…and I tort I had kills of a new bone

system · September 1, 2021, 11:40am

This topic was automatically closed after 5 days. New replies are no longer allowed.

Topic		Replies	Views
100m T-Mobile accounts reportedly hacked, including social security numbers boing	17	1378	August 21, 2021
T-Mobile confirms 1 million hit by data breach boing	8	743	November 30, 2019
Your phone company's shitty security is all that's standing between you and total digital destruction boing	21	1720	July 25, 2018
Security researchers repeatedly warned Kids Pass about bad security, only to be ignored and blocked boing	6	1179	August 5, 2017
Time Warner Cable: Sorry guys but data from up to 320,000 customers probably stolen boing	9	2231	January 12, 2016

Hacker who looted millions of customer records from T-Mobile confirms that "their security is awful"

Related topics