Google’s cell network provider Google Fi has confirmed a data breach, likely related to the recent security incident at T-Mobile, which allowed hackers to steal millions of customers’ information.
In an email sent to customers on Monday, obtained by TechCrunch, Google said that the primary network provider for Google Fi recently informed the company that there had been suspicious activity relating to a third-party support system containing a “limited amount” of Google Fi customer data.
The timing of the notice — and the fact that Google Fi uses a combination of T-Mobile and U.S. Cellular for network connectivity — suggests the breach is linked to the most recent T-Mobile hack. This breach, disclosed on January 19, allowed intruders access to a trove of personal data belonging to 37 million customers, including billing addresses, dates of birth and T-Mobile account details. The incident marked the eighth time T-Mobile has been hacked since 2018.
In the case of Google Fi’s breach, Google says the hackers accessed limited customer information, including phone numbers, account status, SIM card serial numbers and information related to details about customers’ mobile service plans, such as whether they have selected unlimited SMS or international roaming.
Google said that the hackers did not take customers’ personal information or payment card data, passwords, PINs or the contents of text messages or calls.
While some emails told customers that there is “no action required,” at least one Google Fi customer claimed in a Reddit post that their disclosure said that their phone number had been briefly hijacked, known as SIM swapping. Google reportedly told the customer that the intruders had transferred their number for close to two hours, during which they “could have involved the use of your phone number to send and receive phone calls and text messages.” This technique is used by hackers to gain access to a victim’s other online accounts that are protected by the same, albeit hijacked phone number.
TechCrunch asked Google whether it could confirm that the incident was linked to the recent T-Mobile breach but has yet to receive a response. It’s not immediately clear how many Google Fi subscribers have been affected by the breach. Google hasn’t made public how many cell subscribers it has in total.
In its email to customers, the company said it is working with the as-yet-unnamed network provider to “identify and implement measures to secure the data on that third-party system and notify everyone potentially impacted.” It added that there was no access to Google’s systems or any systems overseen by Google.
Updated to remove a sentence related to customer voicemails.
https://techcrunch.com/
The LockBit ransomware gang has published what it claims is the full transcript of its negotiations with Royal Mail, which continues to experience disruption due to last month’s cyberattack. The chat logs negotiating the ransom is the first data that LockBit has published following the cyberattack on Royal Mail, which left the British postal service unable to dispatch […]
The U.S. government’s cybersecurity agency has warned that criminal financially motivated hackers compromised federal agencies using legitimate remote desktop software. CISA said in a joint advisory with the National Security Agency on Wednesday that it had identified a “widespread cyber campaign involving the malicious use of legitimate remote monitoring and management (RMM) software” that had targeted multiple […]
as we all know, humans are often the weakest part of the security chain.” Those are the words of Reddit CTO Christopher Slowe, who was quick to play the blame game in a post announcing that Reddit experienced a breach of internal data last week. He explained that the platform was compromised after an attacker sent “plausible-sounding prompts” to employees […]
Leave a Reply