They did not try to ransom T-Mobile because they already had buyers online, according to their interview with the news outlet. To prove it was real, Binns shared a screenshot of his SSH connection to a production server running Oracle with reporters from Bleeping Computer. He told Bleeping Computer that he gained access to T-Mobile's systems through "production, staging, and development servers two weeks ago." He hacked into an Oracle database server that had customer data inside. "Generating noise was one goal."īinns also spoke with Motherboard and Bleeping Computer to explain some dynamics of the attack. Their security is awful," Binns told the Wall Street Journal. "I was panicking because I had access to something big. By August 4 he had stolen millions of files. From there, it took about one week to gain access to the servers that contained the personal data of millions. Through Telegram, Binns provided evidence to the Wall Street Journal proving he was behind the T-Mobile attack and told reporters that he originally gained access to T-Mobile's network through an unprotected router in July.Īccording to the Wall Street Journal, he had been searching for gaps in T-Mobile's defenses through its internet addresses and gained access to a data center near East Wenatchee, Washington where he could explore more than 100 of the company's servers.
How did the attack happen?īinns, who was born in the US but now lives in Izmir, Turkey, said he conducted the attack from his home. He and his mother moved back to Turkey when Binns was 18. His father, who died when he was two, was American and his mother is Turkish. Who attacked T-Mobile?Ī 21-year-old US citizen by the name of John Binns told The Wall Street Journal and Alon Gal, co-founder of cybercrime intelligence firm Hudson Rock, that he is the main culprit behind the attack. The names of 52,000 people with Metro by T-Mobile accounts may also have been accessed, according to T-Mobile. T-Mobile said another 667,000 accounts of former T- Mobile customers had their information stolen alongside a group of 850,000 active T-Mobile prepaid customers, whose names, phone numbers and account PINs were exposed. More than 5 million "current postpaid customer accounts" also had information like names, addresses, date of births, phone numbers, IMEIs and IMSIs illegally accessed.
0 kommentar(er)
