AT&T revealed on Friday {that a} large information hack, initially uncovered in April, could have been worse than beforehand thought.
The decision and textual content logs of “practically all” of its mobile clients have been uncovered within the breach.
“In April, AT&T discovered that buyer information was illegally downloaded from our workspace on a third-party cloud platform,” the corporate stated in an announcement. “We launched an investigation and engaged main cybersecurity consultants to grasp the character and scope of the prison exercise. We have now taken steps to shut off the unlawful entry level.”
The compromised information consists of recordsdata containing AT&T information of calls and texts of “practically all” of AT&T’s mobile clients from Could 1, 2022 – October 31, 2022. Per CNN, on the finish of 2022, AT&T had 110 million wi-fi subscribers.
The corporate stated the info “doesn’t include the content material of calls or texts, private data equivalent to Social Safety numbers, dates of beginning, or different personally identifiable data.”
“Presently, we don’t imagine that the info is publicly obtainable,” AT&T stated within the assertion. “We’re working with regulation enforcement in its efforts to arrest these concerned within the incident. We perceive that at the least one particular person has been apprehended.”
Prospects can go to att.com/DataIncident for extra data.
[Original story below from 4/1/2024]
Present and former AT&T clients beware.
The cellular and web service supplier confirmed over the weekend the corporate suffered from an enormous information breach that will have leaked the private data of an estimated 7.6 million present AT&T clients and 65.4 million former clients, totaling 73 million customers affected.
AT&T stated that, roughly two weeks in the past, the info set was leaked to the “darkish internet.” It is unclear if the leak originated from AT&T or a third-party vendor.
Associated: ‘I Desire a Free Month’: 1000’s of Prospects Livid at AT&T After Widespread Outages
Compromised information could embody social safety numbers, full names, cellphone numbers, AT&T account data (numbers and passcodes), and e mail and mailing addresses.
“Presently, AT&T doesn’t have proof of unauthorized entry to its methods leading to exfiltration of the info set. The corporate is speaking proactively with these impacted and might be providing credit score monitoring at our expense the place relevant,” the corporate stated in a launch. “As of at the moment, this incident has not had a fabric impression on AT&T’s operations.”
The corporate additionally clarified that the info “seems” to be from accounts created in 2019 or earlier.
Information of the leak was initially posted on X by tech account @vx-underground on March 17, which claimed that “the stolen information is official” and was leaked onto darkish internet platform Breached.
At this time 70,000,000+ information from an unspecified division of AT&T have been leaked onto Breached. No data is obtainable to point whether or not it’s a third get together compromise, or which ‘division’ this information is from.
Regardless, upon overview, we will verify the stolen information is official.
— vx-underground (@vxunderground) March 17, 2024
Earlier this yr, in February, AT&T suffered a mass outage that affected roughly 75% of the corporate’s whole clients. CEO John Stankey confirmed that clients who have been “most affected” by the service disruption will obtain a $5 credit score to their account.
Associated: Maine Hacked in Information Breach, 1.3 Million Residents At Threat
“Moments like these are a check of resilience,” Stankey wrote on the time in an inner memo. “This isn’t our first community outage, and it will not be our final – sadly, it is the truth of our enterprise. What issues most is how we react, adapt, and enhance to ship the service our clients want and anticipate.”
AT&T was down over 10.5% yr over yr as of Monday morning.
