The Experian T-Mobile Data Breach: What Happened in 2015?

In September 2015, Experian—one of the world's largest credit bureaus—disclosed a data breach that impacted its server holding data for T-Mobile credit applications. This breach led to the exposure of personal information for millions of individuals who had applied for T-Mobile services requiring a credit check. Experian's role as a consumer data broker meant it held sensitive details such as full names, addresses, dates of birth, phone numbers, and email addresses. As a result, nearly 28 million records were compromised in what became one of the most widely reported data breaches of that year. The breach highlighted concerns about data security at organizations managing large amounts of personal information, especially when handling sensitive transactions like credit applications.

What Information Was Exposed?

The data accessed during the breach included a wide array of personal details. This encompassed first, middle, and last names, name titles, street addresses (including additional address lines), cities, states, and ZIP codes. Dates of birth were also exposed (year, month, day), along with phone numbers, emails, and even associated IP addresses and URLs linked to the application process. The diversity and completeness of the exposed fields meant that affected individuals faced increased risks related to identity theft and fraud.

How Many People Were Affected?

The breach compromised a total of 27,790,274 records. These records mainly belonged to people who had submitted applications for T-Mobile services that required credit checks between September 2013 and September 2015. It's important to note that not every individual record equates to a unique person, as some applicants may have submitted multiple applications. Nonetheless, the scale of the incident was significant, marking it as a major event in data breach history.

Timeline of the Breach

The breach was discovered by Experian in September 2015. The affected records dated back as far as September 2013, with the attacker believed to have had ongoing unauthorized access for up to two years before detection and public disclosure. Experian swiftly notified T-Mobile and regulatory authorities as soon as it became aware of the breach. Customers were then informed, and both companies worked together to address the aftermath and provide additional support to affected individuals.

Frequently Asked Questions

What happened in the Experian T-Mobile data breach?

The Experian T-Mobile breach in September 2015 involved unauthorized access to a server containing credit application data from T-Mobile customers, resulting in the exposure of sensitive personal information for millions.

How many people were affected by the Experian T-Mobile breach?

Nearly 28 million records were compromised in the Experian T-Mobile breach, impacting a vast number of individuals who applied for T-Mobile credit services.

What personal data was leaked in the Experian T-Mobile incident?

The breach exposed names, mailing and email addresses, phone numbers, birth dates, and a range of other details such as IP addresses and URLs related to submitted credit applications.

When did the Experian T-Mobile breach happen?

The breach was made public in September 2015. The compromised data spanned applications made between September 2013 and September 2015.

Who was responsible for the Experian T-Mobile data breach?

The specific identity of the attacker has not been publicly disclosed; investigation indicated unauthorized access by an external party over a prolonged period.

How can I check if I’m in the Experian T-Mobile breach?

You can check if your information was part of the Experian T-Mobile breach by utilizing the DeHashed search engine.