• ThrowawayOnLemmy@lemmy.world
    link
    fedilink
    English
    arrow-up
    80
    ·
    1 year ago

    T-Mobile decided it’s just easier if they leak your info themselves, rather than let someone else leak it for the 3rd time this year.

    • GeekFTW@kbin.social
      link
      fedilink
      arrow-up
      17
      ·
      1 year ago

      As someone who worked (third party) for T-Mobile a good 15ish years ago: Why am I not surprised that the company that I used to take phone calls for regarding other peoples shit appearing on their online photo roll on the website somehow is having this problem?? 😆

        • GeekFTW@kbin.social
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          You, at least (again) 15ish years ago, could upload photos you took to your account on the tmobile website. Don’t remember if it was meant as a backup or some other purpose. Just remember being able to, as a CSR, check said photos when people would call in for issues with their bills and shit. Was funny lol.

  • SauceFlexr@lemmy.world
    link
    fedilink
    English
    arrow-up
    39
    ·
    edit-2
    1 year ago

    This happened where I work. An inexperienced team was making changes to a shared code base. They made changes to make usernames case insensitive, without thinking about them ready being case sensitive. So if you logged in with user CAT123, you might get cat123’s info. And then I was left on the team that had to clean up their mess and find and understand the impact.

    • TheGreenGolem@lemm.ee
      link
      fedilink
      English
      arrow-up
      26
      arrow-down
      5
      ·
      1 year ago

      Whoever ever thought that case sensitivity is a good idea ever in any place or time whatsoever, can go to hell. Including but not limited to Unix systems.

      • SauceFlexr@lemmy.world
        link
        fedilink
        English
        arrow-up
        18
        ·
        1 year ago

        I hadn’t given it much thought as so many of the legacy systems I worked with were case sensitive. But I’m with you. Except for passwords.

  • paraphrand@lemmy.world
    link
    fedilink
    English
    arrow-up
    13
    ·
    edit-2
    1 year ago

    Their app is trash. It has been telling prepaid customers they are working on an update to the app that will support them for 3-4 years now.

  • AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    10
    ·
    1 year ago

    This is the best summary I could come up with:


    Multiple T-Mobile customers on X (formerly Twitter) and Reddit have reported that they’re able to see other users’ account data — including their current credit balance, purchase history, credit card information, and home address — when signing into their own T-Mobile accounts.

    Some T-Mobile customers have mentioned seeing information from several other accounts, but the scale of the issue isn’t yet clear.

    It’s prevalent enough that the T-Mobile subreddit has asked its users to avoid posting any further information for “security reasons.”

    T-Mobile later blamed the issue on a “technology update” glitch and said the problem had been fixed as of Wednesday afternoon.

    This was a temporary system glitch related to a planned overnight technology update involving limited account information for fewer than 100 customers, which was quickly resolved,” T-Mobile spokesperson Tara Darrow said in a statement emailed to The Verge.

    The company has already had multiple security lapses this year, disclosing two separate cybersecurity attacks in January and May.


    The original article contains 223 words, the summary contains 160 words. Saved 28%. I’m a bot and I’m open source!

  • Binthinkin@kbin.social
    link
    fedilink
    arrow-up
    10
    ·
    1 year ago

    23 years later and we still can’t sure their asses off. Complete bullshit. Is this another private equity purchase? Private equity companies should be made illegal today.

  • jballs@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    I’ve been getting data limit alerts for a few months now for a device that isn’t on my account. I couldn’t find a way to tell T-Mobile about it, unless I wait on hold for a phone call. Fuck that.

  • debounced@kbin.run
    link
    fedilink
    arrow-up
    2
    ·
    edit-2
    1 year ago

    seems like this is an area that a nice “arrangement” could be made, that is, US congress: you grant T-Mobile their band 41 licenses that are being held up by your own incompetence in exchange for T-Mobile actually addressing their own repeated incompetence involving anything related to data security. sell it to the public under the guise that it would be detrimental to the US consumer by letting T-Mobile continue to expand their public reach while completely ignoring the importance of data privacy and security of said public… and you can go on taking bribes from AT&T and Verizon in the meantime, dunno, sounds like a win-win to me.