"T-Mobile to Pay $15.75m Penalty for Multiple Data Breaches"
T-Mobile has recently agreed to a $15.75m settlement with the US Federal Communications Commission (FCC) for multiple cybersecurity incidents that led to millions of customers’ data being breached. The settlement relates to a series of data breaches that occurred in 2021, 2022, and 2023, which have all been subject to FCC investigations. T-Mobile also agreed to invest the same amount to improve its cybersecurity posture. T-Mobile said that this investment will address foundational security vulnerabilities, work to improve cyber hygiene, and adopt robust modern architectures, like zero trust and phishing-resistant multi-factor authentication (MFA). Additionally, T-Mobile’s CISO will regularly update the board concerning the company’s cybersecurity posture and business risks posed by cybersecurity.
Infosecurity Magazine reports: "T-Mobile to Pay $15.75m Penalty for Multiple Data Breaches"