Skip to main content
  1. Home
  2. Phones
  3. Mobile
  4. News

T-Mobile says 48 million people are affected by recent cyberattack

Add as a preferred source on Google

UPDATE: T-Mobile said on August 20 that its investigations have revealed that an additional 5.3 million customers are affected by the attack, along with another 667,000 former customers, bringing the total number affected to about 54 million.

T-Mobile has released more details regarding what it’s describing as a “highly sophisticated cyberattack” on its computer systems that it learned of last week.

Recommended Videos

In a statement sent to Digital Trends late Tuesday evening, the company said its initial investigations confirmed that 7.8 million current T-Mobile postpaid customers are affected, as well as just over 40 million former or prospective customers who had previously applied for credit with T-Mobile.

The company said that there’s currently no indication that the data contained in the accessed files included any customer credit or debit card information. Nor does it believe hackers accessed any phone numbers, account numbers, PINs, or passwords.

However, it said that some of the data accessed by the hackers did include customers’ first and last names, date of birth, Social Security number, and driver’s license/ID information.

It also said that around 850,000 active T-Mobile prepaid customer names, phone numbers, and account PINs were also exposed in the breach. “We have already proactively reset all of the PINs on these accounts to help protect these customers, and we will be notifying accordingly right away,” the company said, adding, “No Metro by T-Mobile, former Sprint prepaid, or Boost customers had their names or PINs exposed.”

The Washington-based mobile giant said that as a result of its initial findings, it is taking “immediate steps to help protect all of the individuals who may be at risk from this cyberattack.”

Those affected will be contacted “shortly” with advice on what action to take. For example, some T-Mobile postpaid customers will be told to change their PIN, though it said this particular precaution was being taken “despite the fact that we have no knowledge that any postpaid account PINs were compromised.”

Those impacted will also be offered two years of free identity protection services with McAfee’s ID Theft Protection Service, along with other safeguards to help reduce the chances of succumbing to a crime perpetrated by those who attempt to use the stolen data for nefarious purposes.

The hack is a major blow to T-Mobile, which has suffered several other similar attacks affecting its customers in the last three years alone. The most recent breach came to light earlier this week when a hacker was spotted trying to sell stolen T-Mobile data on an underground forum. The seller claimed to be in possession of data belonging to 100 million T-Mobile customers, though the company’s initial findings suggest fewer current customers have been impacted.

“We take our customers’ protection very seriously and we will continue to work around the clock on this forensic investigation to ensure we are taking care of our customers in light of this malicious attack,” T-Mobile said on Tuesday, adding that its investigation is ongoing.

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Android 17’s new video standard fixes one of HDR’s biggest problems
Your HDR videos are about to look right, no matter what screen you use.
Electronics, Mobile Phone, Phone

Android 17 is packed with new features, but one small addition might end up mattering more than the flashy ones. It's called Eclipsa Video, and its whole purpose boils down to this: your HDR videos should finally look the way they're supposed to, regardless of which screen you're staring at.

Why does HDR look different on every screen?

Read more
Your free mobile VPN is a privacy disaster. Go figure
Android's free VPNs are somehow worse than you expected
VPN

The free VPN app you downloaded for your Android phone might be doing more harm than good. A recent large-scale audit of free Android VPN apps has shared some worrisome findings that justify some healthy suspicion. Researchers found these apps leaking traffic, sending identifying information to third parties, and basically the opposite of what a VPN is supposed to do.

The study comes from researchers at the University of Michigan, the University of New Mexico and IIT Delhi. Their findings were presented at the Network and Distributed System Security Symposium 2026 alongside MVPNalyzer, a framework designed to audit mobile VPN apps automatically and at scale.

Read more
A broken Galaxy Fold 5 just became the Pixel desktop future I want Google to steal
A broken Galaxy Fold 5 became a tiny PC because Samsung already built the desktop mode Google keeps treating like a side quest.
Desktop mode within Android 16.

A broken Galaxy Fold 5 should be a sad little monument to modern gadget math. One busted outer display, one repair bill nobody wants to inspect too closely, and suddenly a powerful foldable starts heading toward a drawer. Instead, a Redditor turned one into a glowing acrylic DeX box with spare parts, fans, a USB hub, and the kind of LED lighting that makes every homebrew computer look mildly illegal.

https://www.reddit.com/r/SamsungDex/comments/1upica7/fold_5_dexbox/

Read more