"T-Mobile to Pay $15.75m Penalty for Multiple Data Breaches"

T-Mobile has recently agreed to a $15.75m settlement with the US Federal Communications Commission (FCC) for multiple cybersecurity incidents that led to millions of customers’ data being breached.  The settlement relates to a series of data breaches that occurred in 2021, 2022, and 2023, which have all been subject to FCC investigations.  T-Mobile also agreed to invest the same amount to improve its cybersecurity posture.  T-Mobile said that this investment will address foundational security vulnerabilities, work to improve cyber hygiene, and adopt robust modern architectures, like zero trust and phishing-resistant multi-factor authentication (MFA).  Additionally, T-Mobile’s CISO will regularly update the board concerning the company’s cybersecurity posture and business risks posed by cybersecurity.

Infosecurity Magazine reports: "T-Mobile to Pay $15.75m Penalty for Multiple Data Breaches"