close
close

The US FCC orders T-Mobile to provide better cybersecurity

The US FCC orders T-Mobile to provide better cybersecurity

T-Mobile suffered three major data breaches in 2021, 2022 and 2023. CSOOnline“which impacted millions of its customers.”

Following a series of investigations by the U.S. Federal Communications Commission, T-Mobile agreed in court to a number of settlement terms, including a move to a “modern zero-trust architecture” that will designate a Chief Information Security Office that will provide phishing-resistant multi-factor implement authentication, and implement data minimization, data inventory, and data deletion processes designed to limit the collection and retention of customer information.

Slashdot reader itwbennett writes: According to a consent decree released Monday by the U.S. Federal Communications Commission, T-Mobile must pay a $15.75 million fine and invest an equal amount “to strengthen its cybersecurity program, and develop and implement a compliance plan to protect consumers against similar data breaches. in the future.”

“Implementing these practices will require significant – and long overdue – investments. Doing this on the scale of T-Mobile will likely require expenditures an order of magnitude greater than the civil penalty here,” the consent decree said.
The article points out that an order of magnitude larger than $15.75 million would be $157.5 million…