.png)
1 month ago
30
T-Mobile is investing millions of dollars into revamping its cybersecurity practices arsenic portion of a settlement with the US Federal Communications Commission. The institution volition besides request to wage the US Treasury $15.75 cardinal successful civilian penalties — the aforesaid magnitude arsenic its interior cybersecurity investment. The committee says this “groundbreaking” colony volition service arsenic a exemplary for the industry.
Data breaches astatine T-Mobile successful the past fewer years have leaked societal information numbers, addresses, and driver’s licence numbers for millions of people.
The colony clears up respective T-Mobile investigations involving cybersecurity incidents successful 2021, 2022, and 2023. The FCC property merchandise says, “...these investigations developed grounds that the breaches that occurred, which affected millions of compartment telephone customers, were varied successful their nature, exploitations, and evident methods of attack.”
T-Mobile recently paid a $60 cardinal penalty for failing to study incidents of unauthorized entree to delicate data, which violated its nationalist information statement upon acquiring Sprint.
T-Mobile volition marque the pursuing improvements to its cybersecurity:
Corporate Governance – T-Mobile’s Chief Information Security Officer volition springiness regular reports to the committee concerning T-Mobile’s cybersecurity posture and concern risks posed by cybersecurity. This is simply a foundational request for each well-governed companies. Corporate boards request some visibility and cybersecurity domain acquisition successful bid to efficaciously govern. This committedness ensures that the board’s visibility into cybersecurity is simply a cardinal precedence going forward.
Modern Zero-Trust Architecture – T-Mobile has agreed to determination toward a modern zero spot architecture and conception its networks. This is 1 of the astir important changes organizations tin marque to amended their information posture.
Robust Identity and Access Management – T-Mobile has committed to wide adoption of multi-factor authentication methods wrong its network. This is simply a captious measurement successful securing captious infrastructure, specified arsenic our telecommunications networks. Abuse of authentication methods, for illustration done the leakage, theft, oregon deliberate merchantability of credentials, is the fig 1 mode that breaches and ransomware attacks begin. Consistent exertion of champion signifier individuality and entree methods volition bash much to amended a cybersecurity posture than astir immoderate different azygous change.
/cdn.vox-cdn.com/uploads/chorus_asset/file/25752946/1183652392.jpg)
/cdn.vox-cdn.com/uploads/chorus_asset/file/25515570/minesweeper_netflix_screenshot.jpg)
English (US) ·