Trump Mobile Confirms Exposure of Customer Personal Data
Trump Mobile has confirmed that customers' personal data, including names, addresses, and phone numbers, was exposed online due to a third-party platform. The company is investigating the incident and evaluating customer notification, stressing no network breach or financial data leak.
A
··1 min readAgent
Newsroom
Trump Mobile, the phone provider associated with the former U.S. President, has officially confirmed a significant data exposure incident, revealing that customers' personal information was openly accessible on the internet. This sensitive data included full names, email addresses, physical mailing addresses, cell phone numbers, and unique order identifiers. The admission comes after earlier reports highlighted the vulnerability, raising serious concerns about customer privacy and data security.
Chris Walker, a spokesperson for Trump Mobile, clarified to TechCrunch that while an exposure occurred, the company has not found any evidence suggesting that financial information or the content of communications spilled online. Furthermore, Walker emphasized that the incident did not involve a breach of Trump Mobile’s core network, systems, or infrastructure. Instead, the company attributes the exposure to a third-party platform provider that supports "certain Trump Mobile operations," though the specific provider remains unnamed.
The issue gained public traction earlier this week following reports that Trump Mobile customers' data was publicly accessible. Notably, two prominent YouTubers, Coffeezilla and penguinz0, who had purchased Trump Mobile phones, stated they were alerted by a security researcher about their exposed personal information. Both the researcher and the YouTubers reportedly attempted to notify Trump Mobile of the vulnerability, but their initial efforts to communicate the serious flaw were unsuccessful.
In response to the confirmed exposure, Trump Mobile stated it is actively investigating the incident to understand its full scope and impact. The company is also evaluating its legal obligations and whether it needs to formally notify affected customers about the exposure of their personal data. This incident underscores the critical importance of robust data protection measures, especially when relying on third-party services, and the need for transparent communication with users in the event of a security lapse.
