// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Trump Mobile
Breach Record

Trump Mobile

DISCLOSED 2026-05-25 · MISCONFIG · 27,000 RECORDS EXPOSED

A security researcher discovered that Trump Mobile's HTTP POST API was returning customer records without requiring authentication, exposing 27,000 records. The exposed data included personal information and customer records. The incident was caused by an insecure API configuration.

The record

What we know

Disclosed
2026-05-25
Attack vector
Misconfig
Sector
telecommunications
Records exposed
27,000
Data classes exposed
personal informationcustomer records
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · would prevent · opinion

A positive-security model that enforces authentication and authorization on API endpoints would have blocked unauthorized access to customer records, as the insecure API lacked proper access controls.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other misconfig breaches on file

This page is the permanent ColdRecon entry for the Trump Mobile disclosure. It updates if new public reporting emerges. All tracked breaches →

Trump Mobile just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →