Network Security, Critical Infrastructure Security

T-Mobile refutes IntelBroker hacking claims

PHP code lines on a monitor

T-Mobile has repudiated IntelBroker's alleged breach of its systems this month that purportedly resulted in the theft of corporate source code, according to BleepingComputer.

In a hacking forum posting, IntelBroker claimed that it was able to exfiltrate T-Mobile's source code, SQL files, Terraform data, images, Siloprograms, and website certifications after obtaining admin privileges to the mobile telecommunications firm's Confluence server and developer-focused Slack channels.

However, such information was noted by a source to have been old T-Mobile infrastructure data stolen from the servers of a third-party cloud provider.

Attackers may have infiltrated the third-party provider's systems through the exploitation of the critical Confluence Data Center and Server vulnerability, tracked as CVE-2024-1597. "

T-Mobile systems have not been compromised. We are actively investigating a claim of an issue at a third-party service provider. We have no indication that T-Mobile customer data or source code was included and can confirm that the bad actor's claim that T-Mobile's infrastructure was accessed is false," said T-Mobile.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.