fbpx

EZ MSP Blog

EZ MSP has been serving the New York area since 2008, providing IT Support such as technical helpdesk support, computer support and consulting to small and medium-sized businesses.

What Can We Learn from T-Mobile’s Latest Data Breach?

What Can We Learn from T-Mobile’s Latest Data Breach?

It hasn’t been very long since T-Mobile experienced its latest major hack, but unfortunately, here we are again. Hackers have again accessed customer data, with 37 million customers being affected amongst both their prepaid and subscription-based accounts.

Let’s dive into the situation, and what can be learned from it.

Unfortunately, there’s not much good news to accompany the bad.

What Happened with This Breach?

The hackers responsible utilized a common tactic and targeted an Application Programming Interface, or API. An API is a code that allows an application to securely connect to the Internet and communicate with other apps, and is what allows various things—like smart appliances and payment applications—to function properly.

While APIs are generally made to be secure, they are not infallible…something that T-Mobile has found out the hard way.

As a result, quite a bit of sensitive information was made available…not financial information, fortunately, but still, a lot of data was breached.

T-Mobile apparently discovered the hack on January 5th, but only after the breach had been active for over a month, the API first letting those responsible in on November 25, 2022. While the hack was apparently resolved on January 19th, or as the company reported, “the malicious activity appears to be fully contained at this time,” its investigations have continued.

What Can (and Should) Businesses Learn from T-Mobile’s History?

Unfortunately for the telecom, T-Mobile has had a pretty consistent track record of suffering from breaches and hacks. This particular breach was preceded by an even larger one in August 2021, which itself followed attacks in 2020, 2019, 2018, and 2015, with millions of dollars paid out in settlements.

Do you see the important takeaway here?

While API attacks are tricky to catch, it is important that your business does all it can to catch as many attacks as possible. On top of that, you need to do everything you can to protect yourself and your data from any kind of harm. Fortunately, EZ MSP is here to help. Give us a call at (914) 595-2250 to learn more.

File Digitization Brings a New Element to Your Fil...
Patience is a Virtue…Especially Amongst Your Team,...

Contact Us

Learn more about what EZ MSP
can do for your business.

EZ MSP
7 Odell Plaza Suite 134
Yonkers, New York 10701

Connect With Us

Facebook logo  Twitter logo  Linkedin logo  RSS feed

Latest Blog

Social media is constantly evolving, and if the big social networks had it their way, it would be the only place people go when they log onto the Internet. Whether you have strong feelings for or against social media, or perhaps you are ind...