Mint Mobile discloses new data breach exposing customer data

pVMware confirms critical vCenter flaw now exploited in attacksppCISA emergency directive Mitigate Ivanti zerodays immediatelyppVans North Face owner says ransomware breach affects 35 million peopleppTeamViewer abused to breach networks in new ransomware attacksppTrezor support site breach exposes personal data of 66000 customersppHackers start exploiting critical Atlassian Confluence RCE flawppGet handson training with this 50 CompTIA exam prep simulation bundleppTietoevry ransomware attack causes outages for Swedish firms citiesppQualys BrowserCheckppSTOPDecrypterppAuroraDecrypterppFilesLockerDecrypterppAdwCleanerppComboFixppRKillppJunkware Removal ToolppBest VPNsppHow to change IP addressppAccess the dark web safelyppBest VPN for YouTubeppRemove the Theonlinesearchcom Search RedirectppRemove the Smartwebfindercom Search RedirectppHow to remove the PBlock adware browser extensionppRemove the Toksearchesxyz Search RedirectppRemove Security Tool and SecurityTool Uninstall GuideppHow to Remove WinFixer Virtumonde Msevents TrojanvundoppHow to remove Antivirus 2009 Uninstall InstructionsppHow to remove Google Redirects or the TDSS TDL3 or Alureon rootkit using TDSSKillerppLocky Ransomware Information Help Guide and FAQppCryptoLocker Ransomware Information Guide and FAQppCryptorBit and HowDecrypt Information Guide and FAQppCryptoDefense and HowDecrypt Ransomware Information Guide and FAQppHow to enable Kernelmode Hardwareenforced Stack Protection in Windows 11ppHow to use the Windows Registry EditorppHow to backup and restore the Windows RegistryppHow to open a Windows 11 Command Prompt as AdministratorppHow to start Windows in Safe ModeppHow to remove a Trojan Virus Worm or other MalwareppHow to show hidden files in Windows 7ppHow to see hidden files in WindowsppeLearningppIT Certification CoursesppGear GadgetsppSecurityppppMint Mobile has disclosed a new data breach that exposed the personal information of its customers including data that can be used to perform SIM swap attacksppMint is a mobile virtual network operator MVNO offering budget prepaid mobile plans TMobile has proposed paying 13 billion to purchase the companyppThe company began notifying customers on December 22nd via emails titled Important information regarding your account stating that they suffered a security incident and a hacker obtained customer informationppWe are writing to inform you about a security incident we recently identified in which an unauthorized actor obtained some limited types of customer information warns the Mint Mobile data breach notificationppOur investigation indicates that certain information associated with your account was impactedppThe company said they resolved the breach and are working with thirdparty cybersecurity experts to secure their systemsppThe customer data exposed in the breach includesppMint says they do not store credit card numbers so they were not exposed The company also said they protect passwords with strong cryptographic technology so they are not compromisedppThe company did not make it clear from this statement if hashed passwords were accessed by the attackerppThe exposed data is concerning as it is enough information for a threat actor to conduct SIM swapping attacks which is when an attacker ports a persons number to their own deviceppOnce they gain access to the number they can try to access the users online accounts by performing password resets and receiving the OTP codes to get past multifactor authenticationppThreat actors commonly use this technique to breach accounts at cryptocurrency exchanges stealing all assets stored in the online walletppHowever Mint says that customers do not need to take any action and can call customer support at 949 7041162 with any questionsppA Mint Reddit moderator has confirmed that this number was set up specifically to handle questions about the data breachppIf you received a notice via email from noreplyaccountmintmobilecom on December 22 2023 it is from Mint and is not a scam The Customer Care number was setup to handle specific questions about this communication explained a Mint moderator on RedditppWhile Mint has not disclosed details on how they were breached the FalconFeeds threat intel service reported in July 2023 that a threat actor attempted to sell data on a hacking forum that was allegedly stolen from Mint Mobile and Ultra MobileppThe threat actor said the data is a few months old but contained the last four digits of customers credit cards so it is unclear if the incident is related to the disclosed breachppMint Mobile previously suffered a data breach in 2021 when an unauthorized person accessed subscribers account information and ported phone numbers to another carrierppBleepingComputer has contacted Mint with questions about the attack and whether hashed passwords were exposed but has not received a replyppUpdate 122323 Made correction that Mint Mobile is not owned by TMobileppFidelity National Financial Hackers stole data of 13 million peopleppHalara probes breach after hacker leaks data for 950000 peopleppCourt charges dev with hacking after cybersecurity issue disclosureppVans North Face owner says ransomware breach affects 35 million peopleppCredentials are Still King Leaked Credentials Data Breaches and Dark Web MarketsppTMobile does not own Mint The sale hasnt even passed government regulations yetppThanks we made the correctionppNot a member yet Register NowppCourt charges dev with hacking after cybersecurity issue disclosureppTietoevry ransomware attack causes outages for Swedish firms citiesppMalwarebytes AntiMalwareppWindows Repair All In OneppMcAfee Consumer Products Removal toolppAdwCleanerppEverything Desktop SearchppTerms of Use Privacy Policy Ethics Statement Affiliate DisclosureppCopyright 2003 2024 Bleeping Computer LLC All Rights ReservedppNot a member yet Register NowppRead our posting guidelinese to learn what content is prohibitedp