“Mint Mobile has disclosed a new data breach that exposed the personal information of its customers, including data that can be used to perform SIM swap attacks.
“Mint is a mobile virtual network operator (MVNO) offering budget, pre-paid mobile plans. T-Mobile has proposed paying $1.3 billion to purchase the company.
“The company began notifying customers on December 22nd via emails titled “Important information regarding your account,” stating that they suffered a security incident and a hacker obtained customer information.”
“The customer data exposed in the breach includes:
Name
Telephone number
Email address
SIM serial number and IMEI number (a device identifier similar to a serial number)
A brief description of service plan purchased”
“The exposed data is concerning, as it is enough information for a threat actor to conduct SIM swapping attacks, which is when an attacker ports a person’s number to their own device.
“Once they gain access to the number, they can try to access the user’s online accounts by performing password resets and receiving the OTP codes to get past multi-factor authentication.”
===============================================
Looks like the “Minty Fox” got outfoxed.
Win7 Pro SP1 64-bit, Dell Latitude E6330 ("The Tank"), Intel CORE i5 "Ivy Bridge", 12GB RAM, Group "0Patch", Multiple Air-Gapped backup drives in different locations. Linux Mint Newbie
--
"The more kinks you put in the plumbing, the easier it is to stop up the pipes." -Scotty
