On the other hand, with the stolen SIM serial number, an attacker can switch the victim’s phone number to another device controlled by the attacker. This allows the criminal to sign in to banking, securities, and other financial apps belonging to the Mint Mobile customer by hijacking OTPs (one-time passwords that are sent to verify a user’s identity) and using them to sign into these apps to take control of credit cards, stocks, cash, and other personal property.
Mint Mobile notified affected customers about the data breach by sending out an email
As an MVNO, Mint Mobile does not own any cell towers or wireless networks of its own. It essentially resells service from T-Mobile at a profit. If you’re a Mint Mobile customer and received the email from the company disclosing the data breach, chances are that your personal data has been compromised. Mint Mobile set up a special customer service number for those with questions about the data breach. That number is (949) 704-1162.
To prevent a repeat of this incident, Mint Mobile says that it is partnering with “independent security experts.”