The US wireless carrier T-Mobile said Thursday that an unidentified malicious intruder breached its network in late November and stole data on 37 million customers, including addresses, phone numbers, and dates of birth.

Iran PressAmerica: T-Mobile said in a filing with the Security and Exchange Commission that the breach was discovered on Jan. 5. It said the data exposed to theft — based on its investigation to date — did not include passwords or PINs, bank account or credit card information, Social Security numbers or other government IDs.

“Our investigation is still ongoing, but the malicious activity appears to be fully contained at this time,” T-Mobile said, with no evidence the intruder was able to breach the company’s network. The company did not immediately respond to an e-mail seeking comment.

T-Mobile said it has notified law enforcement and federal agencies, which it did not name. The company said it did not expect the incident to have a material impact on its operations. It said the data was first accessed on or around Nov. 25.

T-Mobile has been hacked before. In July, it agreed to pay $350 million to customers who filed a class action lawsuit after the company disclosed in August 2021 that personal data including Social Security numbers and driver’s license info had been stolen. Nearly 80 million US residents were affected.

211