Skip to main content

T-Mobile agrees to $350 million settlement over its massive 2021 data breach

The hack is costing the company big. | Illustration by Alex Castro / The Verge

T-Mobile has agreed to pay $500 million to settle a class-action lawsuit stemming from the 2021 hack that it says exposed around 76.6 million US residents’ data. According to the proposed agreement filled on Friday, which you can read in full below, T-Mobile will put $350 million into a settlement fund to go to lawyers, fees, and, of course, to people who file claims. It’ll also be obligated to spend $150 million on “data security and related technology” during 2022 and 2023, in addition to what it had already budgeted for.

In August, the company announced that its systems had been breached, following reports that Social Security numbers, names, addresses, and driver’s license information for over 100 million of its customers was for sale. While the number proved to be slightly inflated, T-Mobile’s figure of how many people were impacted continued to rise over the rest of the month. T-Mobile’s CEO called this security breach — its fifth in four years — “humbling.”

The proposed settlement agreement still has to be approved by a judge, but if it is, T-Mobile will have 10 days to put money in the fund to cover the costs of notifying people who are eligible to claim. According to the settlement, that covers “the approximately 76.6 million U.S. residents identified by T- Mobile whose information was compromised in the Data Breach,” with a few caveats for some of the carrier’s employees and people close to the judges that presided over the case. In the interest of full disclosure, that could very well mean that I’m eligible to apply for compensation, as I was a T-Mobile customer when the hack occurred.

The settlement agreement doesn’t contain estimates on how much each claimant can expect to receive, though it’s difficult to estimate that kind of thing until it’s clear how many people will make claims.

The lawsuit that T-Mobile is hoping to settle here accused the company of failing to protect its past, present, and prospective customers’ data, not properly notifying people who may have been impacted, and overall having “inadequate data security.” T-Mobile denies these allegations in the agreement, saying that the settlement doesn’t constitute an admission of guilt. In a filing with the Securities and Exchange Commission, the carrier says it “has the right to terminate the agreement under certain conditions” laid out in the proposed agreement but says that it anticipates having to pay out the claims.

Outside of this lawsuit, there have been other responses to T-Mobile’s data breach and others like it. The FCC proposed new rules surrounding such attacks, which aim to improve how a company communicates with people about their data.



Source: The Verge

Popular posts from this blog

Keep your Oculus Quest controllers going strong with these batteries

The Touch Controllers for the Oculus Quest 2 ship with one disposable AA battery each, but once those run out of juice, you should invest in the best Oculus Quest 2 replacement batteries to fill in for them. While the Touch Controllers last much longer than the headset's limited battery, it's still wise to invest in some rechargeable batteries or a stack of disposable batteries to stop your VR sessions from getting disrupted. Here are the batteries and chargers we recommend for your Oculus Touch controllers. Best rechargable batteries + charger Panasonic K-KJ55MCA4BA 3 Hour Quick Charger with 4 AA eneloop Rechargeable Batteries Staff Pick These rechargeable batteries store up to 2,000 mAh of power and can be recharged up to 2,100 times. They can be charged completely from dead or partially charged without damaging the energy storage memory. We recommend buying them with the quick charger accessory, which will get your AAs recharged in no time, but you can also purchas

Uber Eats exits seven markets, transfers one as part of competitive retooling

Uber Eats is pulling out of a clutch of markets — shuttering its on-demand food offering in the Czech Republic, Egypt, Honduras, Romania, Saudi Arabia, Uruguay and Ukraine. It’s also transferring its Uber Eats business operations in the United Arab Emirates (UAE) to Careem, its wholly owned ride-hailing subsidiary that’s mostly focused on the Middle East. “Consumers and restaurants using the Uber Eats app in the UAE will be transitioned to the Careem platform in the coming weeks, after which the Uber Eats app will no longer be available,” it writes in a regulatory filing detailing the operational shifts. “These decisions were made as part of the Company’s ongoing strategy to be in first or second position in all Eats markets by leaning into investment in some countries while exiting others,” the filing adds. An Uber spokesman said the changes are not related to the coronavirus pandemic but rather related to an ongoing “strategy of record” for the company to hold a first or s

This popular open-source web server has some serious security flaws

OpenLiteSpeed Web Server, a globally popular open-source web server , was carrying a couple of high-severity vulnerabilities, experts have warned. Threat actors that managed to exploit these flaws would have been given full privilege remote code execution capabilities, noted researchers from Unit 42, Palo Alto Networks’ cybersecurity research arm.  The team found OpenLiteSpeed Web Server carried three high-severity vulnerabilities, namely CVE-2022-0073 (an 8.8 severity score, high-severity remote code execution flaw), CVE-2022-0074 (an 8.8 high-severity privilege escalation flaw), and CVE-2022-0072 (a 5.8, medium-severity directory traversal flaw). The vulnerabilities also affected the enterprise version, LiteSpeed Web Server. Patch ready Unit 42 has notified LiteSpeed Technologies of its findings which has, subsequently, patched the flaws, and released new versions of the server, urging users to update their software immediately.  Organizations using OpenLiteSpeed versions 1.5.1

These Android games support Bluetooth controllers and they're better for it

Gaming is simply better with a controller in your hands. Gaming on Android typically requires you to settle for using touchscreen controls. However, some gracious game developers take the time and effort to add support for Bluetooth gamepads— and we love them for it. Since so few games provide this feature, we've taken the time to test and compiled our list of the best games that let you play with the best Bluetooth controller in your hands. We'd also recommend getting a Style Ring or PopSocket which can help prop your phone up at a good angle for gaming. You might recognize some of these games from the best Android games roundup and for good reason. But you're here for the best games with controller support, after all, so here I present to you the best you can find on the Play Store. The games Call of Duty Mobile GRID Autosport Tesla vs Lovecraft Evoland 2 Horizon Chase World Tour Riptide GP: Renegade Modern Combat 5: Blackout GTA: San Andreas Oceanhor