We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.
Advertising Disclosure

vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

Mint Mobile Breach: Customers May Face SIM Swap Attacks

Mint Mobile Breach: Customers May Face SIM Swap Attacks
Keira Waddell Published on 27th December 2023 Former Senior Writer

Mint Mobile, a mobile virtual network operator owned by actor Ryan Reynolds and due to be bought by T-Mobile for $1.3 billion, has reported a significant data breach. The breach occurred in March 2023 and puts customers at risk of SIM swap attacks.

Known for offering prepaid mobile phone services, Mint Mobile revealed that threat actors gained unauthorized access to customers' personal information. The breach notification, issued on December 22, 2023 via email, stated:

"We are writing to inform you about a security incident we recently identified in which an unauthorized actor obtained some limited types of customer information."

The compromised data includes customers' names, phone numbers, email addresses, SIM serial numbers, IMEI numbers (device identifiers), and details about their service plans. Mint Mobile has clarified that sensitive financial data and passwords were not exposed in the breach, offering some relief to affected users.

Mint Mobile is actively investigating the incident, working with cybersecurity experts to understand the full scope and impact of the breach. The company, emphasizing its commitment to privacy and security, highlighted that it does not collect dates of birth or government-assigned identifiers like social security numbers or driver's licenses.

Security experts have expressed apprehension regarding the exposed data, emphasizing the risk of SIM swapping attacks. The compromised SIM serial numbers and IMEI numbers could provide threat actors with the means to take control of users' numbers, potentially leading to unauthorized access to online accounts.

This is not the first time Mint Mobile has faced such security challenges. In July 2021, the company disclosed a data breach where an unauthorized attacker accessed subscribers' account information and initiated the transfer of compromised phone numbers to another provider.

Mint Mobile has assured customers that immediate action is not required, and a dedicated customer support number (949-704-1162) has been set up to address enquiries related to the breach, as confirmed by a Mint moderator on Reddit.

About the Author

Keira was a senior writer at vpnMentor. She is an experienced cybersecurity and tech writer dedicated to providing comprehensive insights on VPNs, online privacy, and internet censorship.

Please, comment on how to improve this article. Your feedback matters!

Leave a comment

Sorry, links are not allowed in this field!

Name should contain at least 3 letters

The field content should not exceed 80 letters

Sorry, links are not allowed in this field!

Please enter a valid email address