Trump Mobile confirmed that customers’ names, email addresses, mailing addresses, cell numbers and order IDs were exposed to the open internet. The leak stemmed from a third‑party platform that supports certain Trump Mobile operations, though the provider was not identified. spokesperson Chris Walker told TechCrunch the company is investigating and found no evidence of content or financial data spilling online.

The admission followed earlier reports that the data was publicly searchable. Two YouTubers, Coffeezilla and penguinz0, said a security researcher flagged the exposure after they ordered phones and discovered their own details online. Their attempts to alert Trump Mobile were ignored, prompting the company to evaluate whether direct customer notification is required and demanded a public statement from the carrier.

Walker said Trump Mobile found no breach of its network, systems or infrastructure, limiting the incident to the external service. By confirming the exposure without evidence of deeper compromise, the firm hopes to contain reputational damage and reassure regulators. The episode highlights how reliance on third‑party services can leak personally identifiable information, forcing telecoms to audit supply‑chain security more rigorously.