T-Mobile today revealed the full extent of the recent theft of sensitive consumer data from its internal systems. The breach affects over 40 million people across three groups: people who applied for credit with the company (whether they became a customer or not), a fraction of its current postpaid customers (7.8 million), and 850,000 prepaid customers under the T-Mobile brand. Metro, Boost, and legacy Sprint customers are not affected. Two different types of data were stolen. For the credit-check and postpaid groups, the stolen data includes names, birth dates, Social Security numbers and driver's license information. It does not include phone numbers, account numbers, PINs, passwords, or financial information. But for prepaid customers, the stolen data includes names, phone numbers, and account PINs. T-Mobile has already reset all affected PINs. While T-Mobile confirmed earlier this week that its systems had been compromised, the company did not confirm that customer data had been successfully stolen until today.


More... (https://www.phonescoop.com/articles/article.php?a=22593)