fbpx

T-Mobile Third Data Breach in a Year Class Action

Data breaches happen all too often these days. A data breach of T-Mobile USA, Inc. is the subject of this class action, which the complaint claims the company has “failed to meet [its] obligation to protect sensitive PIII entrusted to them by their current and former customers.” What makes this different from other recent data breaches? The complaint alleges that this is “the fourth breach of T-Mobile’s systems since early 2020, and the third in less than a year.

The Nationwide Class for this action is all persons living in the US, who are current or former customers of T-Mobile or any of its affiliates, parents, or subsidiaries, who had their PII exposed to an unknown third-party cybercriminal as a result of the data breach. An Oklahoma Subclass has also been proposed for those living in Oklahoma.

T-Mobile is a subsidiary of the German Company Deutsche Telekom AG and one of the largest telecommunications companies in the world. Telecommunications companies collect substantial personally identifiable information (PII) on their customers. The complaint alleges, “T-Mobile touts on its website that its privacy principles mean ‘you can trust us to do the right thing with your data.’”

T-Mobile apparently learned of the data breach around August 17, 2021. However, the complaint says that, according to a security researcher, the cybercriminals were offering the stolen PII for sale by the weekend of August 14-15, 2021.

The stolen data included driver’s licenses and other government ID numbers, dates of birth, Social Security numbers, addresses, phone numbers, and T-Mobile prepaid PIN numbers. The Notice of the data breach said the company had “no indication that personal financial or payment information, credit or debit card information, account numbers, or account passwords were accessed.”

The Notice of the data breach was sent to victims via text message. The complaint quotes it as saying, “We’re relentlessly focused on taking care of our customers—that has not changed. We’ve been working around the clock to address this even and continue protection you, which includes taking immediate steps to protect all individuals who may be at risk.”

The complaint alleges that “highly sensitive customer data was being contained unencrypted” on T-Mobile’s systems. This information can be used to commit identity theft or perpetrate other forms of fraud. The complaint contains a chart from the FBI’s Internet Crime Complaint Center (IC3) showing the increase in the number of complaints about cybercrimes, and also a much steeper rise in the financial losses from cybercrimes.

The complaint alleges that T-Mobile did not comply with the requirements of the Federal Trade Commission (FTC) for the protection of data. In particular, the complaint cites the FTC’s publication Protecting Personal Information: A Guide for Business. It claims that the company “negligently secur[ed]” the PII it had on file and “failed to employ reasonable and appropriately measures to protect against unauthorized access to confidential customer data.”

Article Type: Lawsuit
Topic: Privacy

Most Recent Case Event

T-Mobile Third Data Breach in a Year Complaint

August 24, 2021

Data breaches happen all too often these days. A data breach of T-Mobile USA, Inc. is the subject of this class action, which the complaint claims the company has “failed to meet [its] obligation to protect sensitive PIII entrusted to them by their current and former customers.” What makes this different from other recent data breaches? The complaint alleges that this is “the fourth breach of T-Mobile’s systems since early 2020, and the third in less than a year.

T-Mobile Third Data Breach in a Year Complaint

Case Event History

T-Mobile Third Data Breach in a Year Complaint

August 24, 2021

Data breaches happen all too often these days. A data breach of T-Mobile USA, Inc. is the subject of this class action, which the complaint claims the company has “failed to meet [its] obligation to protect sensitive PIII entrusted to them by their current and former customers.” What makes this different from other recent data breaches? The complaint alleges that this is “the fourth breach of T-Mobile’s systems since early 2020, and the third in less than a year.

T-Mobile Third Data Breach in a Year Complaint
Tags: Exposing Private Information, Exposure to cyber crime, Your Privacy