T-Mobile US today said someone abused an API to download the personal information of 37 million subscribers. A regulatory filing [PDF] disclosed one or more miscreants were able to access potentially the “name, billing address, email, phone number, date of birth, T-Mobile account number and information such as the number of lines on the account and plan features”
Read full article on The Register