The breach impacted more than 53 million customers, including more than 4 million New Yorkers.

NEW YORK (TIP):  In an “urgent message,” New York Attorney General Letitia James confirmed that stolen sensitive customer information was put for sale on the dark web. James is advising all New Yorkers who believe they were impacted by the huge T-Mobile data breach to take appropriate steps to protect their personal information from identity theft. This comes after several customers received alerts that their information was circulating online following the August 2021 data breach.

“I have an urgent message for T-Mobile customers and other consumers: Be aware of any misuse of your personal information and follow the guidance provided by my office to protect yourself from identity theft,” James said. “Information stolen in a massive data breach has fallen into the wrong hands and is circulating on the dark web. The guidance offered by my office can help prevent identity theft. I advise all New Yorkers to maintain their financial safety by following the guidance my office has laid out.”In August 2021, T-Mobile reported a massive data breach compromising the sensitive personal information of millions of current, former, and prospective T-Mobile customers. The breach impacted more than 53 million customers, including more than 4 million New Yorkers. Among other categories of impacted information, millions had their names, dates of birth, Social Security numbers and driver’s license information compromised.

Recently, a large subset of the information compromised in the breach was discovered for sale on the dark web — a hidden portion of the Internet where cyber criminals buy, sell, and track personal information. Many individuals received alerts through various identity theft protection services informing them that their information was found online in connection with the breach, confirming that impacted individuals are at heightened risk for identity theft.

James urged anyone who believes they were impacted by the T-Mobile breach to take the following steps to protect themselves:

Monitor your credit. Credit-monitoring services track your credit report and alert you whenever a change is made, such as a new account or a large purchase. Most services will notify you within 24 hours of any change to your credit report.

Consider placing a free credit freeze on your credit report. Identity thieves will not be able to open a new credit account in your name while the freeze is in place. You can place a credit freeze by contacting each of the three major credit bureaus:

Equifax: visit online or call 1-888-766-0008

Experian: visit online or call 1-888-397-3742

TransUnion: visit online or call 1-800-680-7289

Place a fraud alert on your credit report. A fraud alert tells lenders and creditors to take extra steps to verify your identity before issuing credit. You can place a fraud alert by contacting any one of the three major credit bureaus.

Additional Resources. If you believe you are a victim of identity theft, go to identitytheft.gov for assistance on how to report it and recover from it. Consumers can also contact the New York Attorney General’s Office for help by completing and submitting a complaint with the Bureau of Internet and Technology or by calling (800) 771-7755.