AT&T Information on Illegal Download of Customer Data

AT&T:

In April, AT&T learned that customer data was illegally downloaded from our workspace on a third-party cloud platform. We launched an investigation and engaged leading cybersecurity experts to understand the nature and scope of the criminal activity. We have taken steps to close off the illegal access point. We are working with law enforcement in its efforts to arrest those involved in the incident. We understand that at least one person has been apprehended.

Based on our investigation, the compromised data includes files containing AT&T records of calls and texts of nearly all of AT&T’s cellular customers, customers of mobile virtual network operators (MVNOs) using AT&T’s wireless network, as well as AT&T’s landline customers who interacted with those cellular numbers between May 1, 2022 - October 31, 2022. The compromised data also includes records from January 2, 2023, for a very small number of customers. The records identify the telephone numbers an AT&T or MVNO cellular number interacted with during these periods. For a subset of records, one or more cell site identification number(s) associated with the interactions are also included.

The data does not contain the content of calls or texts, personal information such as Social Security numbers, dates of birth, or other personally identifiable information. It also does not include some typical information you see in your usage details, such as the time stamp of calls or texts. While the data does not include customer names, there are often ways, using publicly available online tools, to find the name associated with a specific telephone number.

At this time, we do not believe that the data is publicly available.

Our top priority, as always, is our customers. We will provide notice to current and former customers whose information was involved along with resources to help protect their information. We sincerely regret this incident occurred and remain committed to protecting the information in our care. Customers can visit att.com/DataIncident for more information.

Administrator

Staff member

MVP

Thread Starter

Jul 15, 2024

#2

Hacker was allegedly paid $370,000 ransom to delete stolen AT&T data

The hacker claims it sent a video as proof of deletion and received the ransom in bitcoins.

www.csoonline.com

My Computers

System One System Two

OS

Windows 11 Pro for Workstations

Computer type

PC/Desktop

Manufacturer/Model

Custom self build

CPU

Intel i7-8700K 5 GHz

Motherboard

ASUS ROG Maximus XI Formula Z390

Memory

64 GB (4x16GB) G.SKILL TridentZ RGB DDR4 3600 MHz (F4-3600C18D-32GTZR)

Graphics Card(s)

ASUS ROG-STRIX-GTX1080TI-O11G-GAMING (11GB GDDR5X)

Sound Card

Integrated Digital Audio (S/PDIF)

Monitor(s) Displays

2 x Samsung Odyssey G75 27"

Screen Resolution

2560x1440

Hard Drives

1TB Samsung 990 PRO M.2,
4TB Samsung 990 PRO M.2,
8TB WD MyCloudEX2Ultra NAS

PSU

Seasonic Prime Titanium 850W

Case

Thermaltake Core P3 wall mounted

Cooling

Corsair Hydro H115i

Keyboard

Logitech wireless K800

Mouse

Logitech MX Master 3

Internet Speed

1 Gbps Download and 35 Mbps Upload

Browser

Google Chrome

Antivirus

Microsoft Defender and Malwarebytes Premium

Other Info

Logitech Z625 speaker system,
Logitech BRIO 4K Pro webcam,
HP Color LaserJet Pro MFP M477fdn,
CyberPower CP1500PFCLCD
Galaxy S23 Plus phone
Operating System

Windows 11 Pro

Computer type

Laptop

Manufacturer/Model

Surface Laptop 7 Copilot+ PC

CPU

Snapdragon X Elite (12 core) 3.42 GHz

Memory

16 GB LPDDR5x-7467 MHz

Monitor(s) Displays

15" HDR

Screen Resolution

2496 x 1664

Hard Drives

1 TB SSD

Internet Speed

Wi-Fi 7 and Bluetooth 5.4

Browser

Chrome and Edge

Antivirus

Windows Defender