An employee reportedly absconded with the customer marketing data of 1.5 million customers of T-Mobile in the Czech Republic and attempted to sell it, but the company claimed to have secured the database.
In a statement, T-Mobile confirmed an incident occurred but owing to an ongoing police investigation could not elaborate more than to say the data did "not contain any location or traffic data or sensitive data such as passwords". However, it added, customers are potentially at risk of marketers using the data to approach them with unsolicited offers.
This admission seemed to indicate that the data has, indeed, reached the black market.
Because the Czech Police's Unit for Combating Organised Crime was brought into the investigation, speculation has been that the exposure affects the entirety of T-Mobile customers in the Czech Republic, 1.5 million users, which would make this incident the most extensive data breach in the region.