T-MOBILE is currently investigating claims of a massive customer data breach which hackers claim has affected 100 million users.
The data breach reportedly includes social security numbers, phone numbers, names, physical addresses, unique IMEI numbers, and driver’s license information.
T-Mobile was first alerted to the possible breach by a forum post from a hacker claiming to be selling huge amounts of personal data.
The post didn’t mention T-Mobile specifically, but when contact by VICE the seller claimed that the data had been lifted from T-Mobile Servers.
“T-Mobile USA. Full customer info,” the seller told the outlet, adding that the information of 100 million customers had been compromised.
The alleged sleuth is requesting six bitcoin – or roughly $260,000 – in exchange for a subset of the data which contains 30 million social security numbers and driver’s licenses, VICE reports.
The seller suggested that T-Mobile had already responded to the breach, adding: “I think they already found out because we lost access to the backdoored servers.”
While the hacker has been removed from the hacked server, they claim they had already downloaded the data locally.
“It’s backed up in multiple places,” they told VICE’s Motherboard vertical.
In a statement, T-Mobile said it had been made aware of the hacker’s claims and have been “actively investigating their validity.”
“We do not have any additional information to share at this time,” the company added, declining to comment about the scale of the hack.