Mobilelink Data Breach Exposes Sensitive Customer Information in Large-Scale Ransomware Attack
Master Mobilelink LLC and Mobily LLC, operating as Mobilelink a major U.S. wireless retailer and the largest authorized retailer for Cricket Wireless recently disclosed a significant data breach affecting thousands of individuals. The incident, first revealed by the DragonForce ransomware group on December 2, 2025, involved the theft of 5.04 TB of company data, which the group threatened to publish within a week.
Mobilelink, headquartered in Sugar Land, Texas, operates over 550 locations nationwide and employs more than 5,000 people. The breach was officially reported to the Texas Attorney General on March 30, 2026, confirming that 12,201 Texas residents were impacted. Affected individuals were notified via U.S. mail.
The exposed data includes highly sensitive information:
- Names
- Social Security numbers
- Financial details (account numbers, credit/debit card numbers)
- Dates of birth
The breach has prompted legal investigations, with law firms examining potential compensation claims for those affected. The incident underscores the growing threat of ransomware attacks targeting large-scale retailers and the risks of widespread personal data exposure.
Source: https://www.claimdepot.com/investigations/mobilelink-data-breach-2026
Mobilelink cybersecurity rating report: https://www.rankiteo.com/company/mobilelink
"id": "MOB1774910244",
"linkid": "mobilelink",
"type": "Ransomware",
"date": "12/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '12,201 Texas residents '
'(estimated thousands more '
'nationwide)',
'industry': 'Telecommunications/Retail',
'location': 'Sugar Land, Texas, USA',
'name': 'Master Mobilelink LLC (Mobilelink)',
'size': '550+ locations, 5000+ employees',
'type': 'Wireless Retailer'}],
'customer_advisories': 'U.S. mail notifications sent to affected individuals',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '12,201 (Texas residents)',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Financial details',
'Dates of birth']},
'date_publicly_disclosed': '2025-12-02',
'description': 'Master Mobilelink LLC and Mobily LLC, operating as '
'Mobilelink, a major U.S. wireless retailer and the largest '
'authorized retailer for Cricket Wireless, disclosed a '
'significant data breach affecting thousands of individuals. '
'The incident involved the theft of 5.04 TB of company data by '
'the DragonForce ransomware group, which threatened to publish '
'the data within a week.',
'impact': {'data_compromised': '5.04 TB',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential compensation claims',
'payment_information_risk': 'High'},
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'DragonForce'},
'references': [{'source': 'DragonForce ransomware group disclosure'},
{'source': 'Texas Attorney General breach report'}],
'regulatory_compliance': {'legal_actions': 'Legal investigations for '
'potential compensation claims',
'regulatory_notifications': 'Reported to Texas '
'Attorney General on '
'2026-03-30'},
'response': {'communication_strategy': 'U.S. mail notifications to affected '
'individuals'},
'threat_actor': 'DragonForce ransomware group',
'title': 'Mobilelink Data Breach Exposes Sensitive Customer Information in '
'Large-Scale Ransomware Attack',
'type': 'Ransomware'}