T-Mobile Customers: Today’s the Last Day to Claim Your Refund

by ·

Current and past T-Mobile customers may be eligible for part of a $350 million settlement, but tonight is your last chance to file a claim for compensation. 

T-Mobile agreed to the massive payout in 2022 to resolve claims that a massive data breach that exposed millions of people’s personal information was at least partially due to its negligence. 

According to plaintiffs in a class action lawsuit, the carrier should have protected sensitive consumer data. 

“Instead, T-Mobile suffered one of the largest and most consequential data breaches in US history, compromising the sensitive personal information of over 75 million consumers,” their complaint read.

Here’s what you need to know about the T-Mobile settlement, including how to find out if you qualify for payment, how much money you could get and how much time is left to file a claim.

For more settlements, find out if you qualify for Avis’ $45 million deal over hidden fees or AT&T’s $60 million data-throttling payout.

What happened in the T-Mobile case?

On Aug. 15, 2021, T-Mobile reported that it had suffered a massive cyberattack.

Exactly how many customers were impacted isn’t immediately clear: T-Mobile has said that only about 850,000 people’s names, addresses and PINs were “compromised.” According to court filings, however, approximately 76.6 million people had their data exposed. And a hacker selling the information on the dark web told Vice they had personal information relating to more than 100 million T-Mobile users.

John Binns, an American living in Turkey, eventually took responsibility for the breach, the fifth such attack on T-Mobile since 2015.

“I was panicking because I had access to something big,” Binns told The Wall Street Journal. “Their security is awful.”

T-Mobile hasn’t acknowledged any wrongdoing but, in a statement shared with CNET, said that, “like every company, we are not immune to these criminal attacks.”

Who is eligible for money in the settlement?

T-Mobile has identified 76 million past and present customers in the US whose information was potentially compromised in the data breach, though the final number may be even higher.

If the $350 million settlement is approved — the final hearing took place Friday — it will be the second-largest data breach payout in US history, following Equifax’s $700 million settlement in 2019.

Most class members were notified of the proposed settlement by mail, but you can confirm your status by emailing the settlement administrator or calling 833-512-2314.

How much money could I get from T-Mobile?

Current and former T-Mobile customers are eligible for a $25 cash payment, according to the settlement website. California residents are entitled to $100.

You can be reimbursed up to $25,000 if you had to spend time or money to recover from fraud or identity theft relating to the breach, though you must submit extensive documentation supporting your claim.

T-Mobile is also offering two free years of McAfee’s ID Theft Protection Service to anyone who believes they may have been a victim of the hack and has agreed to invest $150 million in improving its data security. 

How do I file a claim, and what is the deadline?

You can submit a claim via the settlement website or also mail a completed claim form to: 

T-Mobile Data Breach Settlement
c/o Kroll Settlement Administration LLC
P.O. Box 225391
New York, NY 10150-5391

Claims must be submitted by or postmarked by 11:59 p.m. PT on Jan. 23, 2023.

What’s T-Mobile doing to protect against future data breaches?

T-Mobile has “doubled down” on fighting hackers, the company said in its July 22 statement. It is boosting employee training, collaborating on new protocols with industry experts like Mandiant and Accenture and creating a cybersecurity office that reports directly to CEO Mike Sievert.

T-Mobile also fell prey to the hacker ring Lapsus$ in March 2022. Hackers accessed employee accounts and attempted to find T-Mobile accounts associated with the Department of Defense and FBI, TechCrunch reported.

They were thwarted by secondary authentication checks.

Read more: How to Protect Your Personal Data After a Security Breach

You may also like...