Sprint customers, change your password right away, especially if you own a Samsung device.
As originally reported by ZDNet, Sprint informed its customers that a major breach of security occurred on June 22. Hackers used an independent vulnerability on a promotional Samsung website to provide Sprint customer information. Sprint has not yet stated how many accounts were involved or how long the information was available, so it is unclear how big a breach this was. What we know is that the leaked information is included "phone number, device type, device ID, monthly repayment charges, subscriber ID, account number, account creation date, upgrade eligibility, first and last name, billing address, and additional services," According to a message that Sprint sent to some users in response to the breach.
Later in the letter, Sprint assured customers that "no other information that could pose a significant risk to fraud or identity theft was purchased," but you have to excuse us for not sharing Sprint's trust. To say that nothing of "significant risk" was leaked is all good and good, but there is plenty of information included in the leak that can be exploited by hackers to take over the unit and your account.
Sprint took the liberty to change the PIN for accounts that may have been compromised, but we like to make mistakes on the side of caution around here. This is the perfect excuse to take a moment and update your Sprint account password and / or PIN, even if you haven't received a Sprint message that your information was leaked. You can do this in your account settings after you sign in to Sprint's website. If you need help getting up with a new password, please see our guide here.