Google Fi hit by data breach following T-Mobile hack

Google Fi logo
(Image credit: Google)

Customers of Google Fi have been notified via email of “suspicious activity” that may have seen some lower-risk data exposed.

Somewhat ironically, Google Fi promises to be a “private and secure” phone plan that gives its subscribers access to unlimited data, end-to-end call encryption, VPN access, and more, for $50 per month (for one user). 

Maybe less secure, though, is its “primary network provider” which informed Google that a “third party system that contains a limited amount of Google Fi customer data” was at risk. The unidentified network provider is likely to be T-Mobile, given that it supports a large portion of the Google Fi network and also experienced a data breach around the same time.

TechRadar Pro needs you!
We want to build a better website for our readers, and we need your help! You can do your bit by filling out our survey and telling us your opinions and views about the tech industry in 2023. It will only take a few minutes and all your answers will be anonymous and confidential. Thank you again for helping us make TechRadar Pro even better.

D. Athow, Managing Editor

Google Fi data breach

Google told its customers that data including account activation, mobile service plan details, SIM card serial numbers, and account status, are among the key areas said to be at risk.

It stresses that personally identifiable information is excluded from the breach, so anything from a customer’s name, contact details, and date of birth, to financial information and login credentials, should all be safe.

Google’s incident response team says that Google’s systems were not compromised, but that it has worked with the “primary network provider” to implement security measures.

Customers do not need to do anything, and their services continue to work as usual.

Despite this, one Reddit user claims to have received an email from Google Fi notifying them that their mobile phone service had been transferred from their SIM card to another for almost two hours.

The author discusses how their primary email account, a financial account, and an authenticator app had all been accessed by a hacker, who may have been able to bypass any SMS-based authentication and gain access to personal accounts.

Google did not immediately respond to TechRadar Pro’s request for comment on the matter.

Via 9To5Google

TOPICS
Craig Hale

With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!

Read more
Someone holding a passport with two boarding passes inside it
Top digital loan firm security slip-up puts data of 36 million users at risk
Shadowed hands on a digital background reaching for a login prompt.
A flaw in Google OAuth system is exposing millions of users via abandoned accounts
Security padlock and circuit board to protect data
Mexican fintech company Miio exposed millions of files of sensitive customer data
Fraude en ligne phishing
Google forced to step up phishing defenses following ‘most sophisticated attack’ it has ever seen
Representational image of data security
Travel data of almost 500,000 users exposed in Daytrip leak
the YouTube logo on a screen in front of other YouTube logos covering a black background
Worrying YouTube security flaw exposed billions of user emails
Latest in Security
China
Notorious Chinese hackers FamousSparrow allegedly target US financial firms
A digital representation of a lock
NYU website defaced as hacker leaks info on a million students
NHS
NHS IT supplier hit with major fine following ransomware attack
Data leak
Top home hardware firm data leak could see millions of customers affected
Representational image depecting cybersecurity protection
Third-party security issues could be the biggest threat facing your business
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Latest in News
An image of the Nintendo Switch 2
Nintendo Switch 2 pre-orders will start on April 2 according to Best Buy Canada
Person printing
Microsoft’s latest Windows 11 update exorcises possessed printers that spewed out pages of random characters
Pro-Ject A1.2 in black, playing a vinyl record in a hi-fi listening room
Pro-Ject's new fully-automatic turntable could be the buy of Record Store Day 2025
Intergalactic: The Heretic Prophet
Intergalactic: The Heretic Prophet reportedly won't release until after 2026, as Neil Druckmann says that staff 'are playing it at the office' right now - but I don't think I can wait that long
Screenshot from action RPG soulslike Lies of P
Lies of P Overture won't elaborate on the game's eyebrow-raising post-credits twist, and I think that's good news
Nintendo Switch 2
The Switch 2 launching with a Mario Kart game 'is very unlike Nintendo' compared to the original Switch releasing with Breath of the Wild, says former marketing leads: 'That's what's gonna make you want to buy the new hardware'