La compañía telefónica T-Mobile ha informado recientemente de una fuga de datos que contiene información sobre unos 40 millions of customers. Parece ser que la configuración de una estación en pruebas ha sido el desencadenante de estos hechos.
Mientras continúan las investigaciones por parte de la compañía, se ha podido determinar que la información robada incluye nombres, Dates of birth, números de Seguridad Social e información sobre permisos de conducir de los clientes. So far, no se ha filtrado información acerca de números de cuenta, PINs, contraseñas o datos bancarios de las cuentas filtradas, fortunately.
Additionally, la información de unos 850.000 clientes de la compañía en la modalidad de prepago ha sido expuesta e incluye PINs, phone numbers and customer names.
In these initial investigations, it has also been possible to determine a possible origin of the leaked information: A GPRS support node apparently used for testing. Since this node was exposed to the Internet, it could have allowed the attacker to access the company's network from that open location.
The company, After learning about the leak, they have located and closed the node in question, but they have not yet specified how an attacker could have slipped in and accessed the company's systems.
At last, T-Mobile offers its customers a free identity theft protection service, in addition to recommending that customers change their PIN codes. In the coming days, The company will publish a website with all the details to help protect affected customers and make it easier for them to carry out the necessary procedures and formalities.
Fountain: The Record
Image: Mike Mozart (Flickr, Creative Commons)