A menace actor claims to have hacked T-Cellular’s servers and stolen databases containing the private knowledge of roughly 100 million prospects.
The alleged knowledge breach first surfaced on a hacking discussion board yesterday after the menace actor claimed to be promoting a database for six bitcoin (~$280K) containing delivery dates, driver’s license numbers, and social safety numbers for 30 million folks.
Whereas the discussion board publish doesn’t state the origins of the info, the menace actor informed BleepingComputer that they took it from T-Cellular in a large server breach.
The menace actor claims to have hacked into T-Cellular’s manufacturing, staging, and improvement servers two weeks in the past, together with an Oracle database server containing buyer knowledge.
This stolen knowledge allegedly accommodates the info for about 100 million T-Cellular prospects and may embody prospects’ IMSI, IMEI, cellphone numbers, buyer names, safety PINs, Social Safety numbers, driver’s license numbers, and date of delivery.
“Their complete IMEI historical past database going again to 2004 was stolen,” the hacker informed BleepingComputer.
An IMEI (Worldwide Cellular Tools Id) is a novel quantity used to determine cellphones, whereas an IMSI (Worldwide cellular subscriber identification) is a novel quantity related to a person on a mobile community.
Cybersecurity intelligence agency Cyble informed BleepingComputer yesterday that the menace actor claims to have stolen a number of databases totaling roughly 106GB of information, together with T-Cellular’s buyer relationship administration (CRM) database.
Motherboard, who first reported on this breach, stated they might confirm that knowledge samples supplied by the menace actor belonged to T-Cellular prospects.
When requested in the event that they tried to ransom the stolen knowledge to T-Cellular, the menace actors stated they by no means contacted the corporate and determined to promote it on boards the place they have already got consumers.
BleepingComputer has contacted T-Cellular however didn’t obtain a response to our question at the moment. Nonetheless, Motherboard acquired a reply stating they’re investigating the alleged knowledge breach.
“We’re conscious of claims made in an underground discussion board and have been actively investigating their validity. We don’t have any extra data to share at the moment,” T-Cellular informed Motherboard.
T-Cellular hacked for revenge
The menace actors informed Alon Gal, CTO of cybercrime intelligence agency Hudson Rock, that they carried out this hack to break US infrastructure.
“This breach was carried out to retaliate in opposition to the US for the kidnapping and torture of John Erin Binns (CIA Raven-1) in Germany by CIA and Turkish intelligence brokers in 2019,” the menace actors informed Gal in a dialog.
“We did it to hurt US infrastructure.”
Binns is a resident of Turkey who sued the FBI, CIA, and Department of Justice in 2020.
The grievance alleges that Binn was tortured and harassed by the US and Turkish governments and is in search of to compel the USA to launch paperwork concerning these actions below the Freedom of Data Act.