fbpx

T-Mobile USA Fifth Data Breach in Three Years Class Action

T-Mobile USA, Inc. suffered a data breach which it announced in August 2021. What makes this particularly galling is that this is not its first data breach. The complaint for this class action alleges, “T-Mobile itself has been particularly aware of the vulnerability of its security systems, having previously suffered four data breaches over the past three years.” The other occurred in August 2018, November 2019, March 2020, and December 2020.

The Nationwide Class is all persons in the US whose PII was maintained on the T-Mobile systems that were compromised as a result of the data breach announced by T-Mobile on or around August 16, 2021. A New Jersey Subclass has also been defined for those in that state.

The plaintiffs for this class action, Jose Palomino and Jessica Tuck, were required to provide personally identifiable information (PII) to the company when they opened their accounts, including their Social Security numbers and driver’s license numbers.

On August 15, 2021, Vice.com, an Internet news site, said that T-Mobile had been the target of a large data breach. A hacker had posted that he had “data related to over 100 million people” which “came from T-Mobile servers.” Vice claimed that the hacker was trying to sell the data.

T-Mobile issued additional information slowly. The next day, August 16, T-Mobile acknowledged that “unauthorized access to some T-Mobile data occurred.” But it was still apparently unsure of what was involved in the breach.

The company continued to release information only slowly. The next day, August 17, it put out a release saying that it was “confident that the entry point used to gain access has been closed.” But the complaint does not praise the company for quick work: “The fact that T-Mobile purports to have quickly located and closed the entry point suggests that, with proper precautions, T-Mobile could have eliminated the threat before the Data Breach occurred and thus prevented the theft of its customers’ Personally Identifiable Information.”

On August 18 and 20, T-Mobile disclosed and updated figures about the extent of the data breach.

Around the same time, Palomino received a text message, which the complaint quotes in part as follows: “T-Mobile has determined that unauthorized access to some of your information, or others on your account, has occurred, like name, address, phone number and DOB. Importantly, we have NO information that indicates your SSN, personal financial or payment information, credit/debit card information, account numbers, or account passwords were accessed.” Plaintiff Tuck received a similar message.

The complaint alleges that T-Mobile had an obligation to protect personal information and keep it confidential. The complaint alleges that T-Mobile’s “data security obligations and promises were particularly important given the substantial increase in data breaches preceding August 2021, which were widely known to the public and to anyone in the telecommunications industry.”

Article Type: Lawsuit
Topic: Privacy

Most Recent Case Event

T-Mobile USA Fifth Data Breach in Three Years Complaint

September 3, 2021

T-Mobile USA, Inc. suffered a data breach which it announced in August 2021. What makes this particularly galling is that this is not its first data breach. The complaint for this class action alleges, “T-Mobile itself has been particularly aware of the vulnerability of its security systems, having previously suffered four data breaches over the past three years.” The other occurred in August 2018, November 2019, March 2020, and December 2020.

T-Mobile USA Fifth Data Breach in Three Years Complaint

Case Event History

T-Mobile USA Fifth Data Breach in Three Years Complaint

September 3, 2021

T-Mobile USA, Inc. suffered a data breach which it announced in August 2021. What makes this particularly galling is that this is not its first data breach. The complaint for this class action alleges, “T-Mobile itself has been particularly aware of the vulnerability of its security systems, having previously suffered four data breaches over the past three years.” The other occurred in August 2018, November 2019, March 2020, and December 2020.

T-Mobile USA Fifth Data Breach in Three Years Complaint
Tags: Exposing Private Information, Exposure to cyber crime, Your Privacy