"T-Mobile Breached Again; Lapsus$ Behind the Attack"

The US telecommunications carrier T-Mobile has confirmed that the Lapsus$ ransomware group breached its internal network through compromised employee accounts. However, the company claims that the hackers did not steal any sensitive customer or government information. According to the information security blogger Brian Krebs who recently reviewed a copy of private chat messages between members of the Lapsus$ cybercrime group before its most active members were arrested last month, T-Mobile had been breached by Lapsus$ several times. The group allegedly also stole source code from various company projects. A spokesperson for T-Mobile stated that its monitoring tools detected a bad actor using stolen credentials to infiltrate internal systems housing operational tools software, but no customer or government information was stolen. Lapsus$ openly operated on its Telegram chat channel since December 2021, which currently has nearly 60,000 followers. The group used this channel to leak sensitive data stolen from victims. This article continues to discuss the breach of T-Mobile's systems by Lapsus$ hackers, the group's other activities, the arrest of its most active members, and other notable attacks on T-Mobile. 

DataBreachToday reports "T-Mobile Breached Again; Lapsus$ Behind the Attack"