T-Mobile confirmed the attack in a statement to the verge. The’systems accessed contained no customer or government information or other similarly sensitive information’.

The group discussed targeting T-Mobile in the week prior to the arrest of seven of its teenage members. After purchasing employees’ credentials online, the members could use the company’s internal tools to perform SIM swaps.

Lapsus $ hackers also attempted to crack into the FBI and Department of defense’s T-Mobile accounts. They were ultimately unable to do so, as additional verification measures were required.

T-Mobile launched an emailed statement to the verge.’our systems and processes worked as designed, the intrusion was rapidly shut down and closed off, and the compromised credentials used were rendered obsolete,’ T-Mobile said.

In August 2021, a breach exposed the personal information belonging to over 47 million customers. Another breach occurred just months later compromised’small number’ of customer accounts.