AUS
NZ
UK
CA
USA
IND
_10_04_2024_16_38_50_427275.jpg)
AT&T has been actively addressing a significant data breach where customer data was unlawfully accessed from a third-party cloud platform. The breach, discovered in April, prompted immediate action from AT&T, initiating a thorough investigation alongside cybersecurity experts to assess the extent and nature of the incident.
Incident Details Unveiled
During their investigation, AT&T identified that the compromised data primarily pertained to records of calls and texts involving nearly all AT&T cellular customers and users of AT&T's network through mobile virtual network operators (MVNOs). The affected period spans from May 1, 2022, to October 31, 2022, with a subset of records extending to January 2, 2023. The compromised information includes telephone numbers and associated cell site identification numbers linked to these interactions.
Nature of Compromised Data
Crucially, the accessed data does not encompass the content of communications, nor does it include sensitive personal details such as Social Security numbers or dates of birth. Additionally, typical usage details like timestamps of calls or texts were not compromised. While customer names were not directly included, there remains a potential risk of identification through publicly available online tools correlating telephone numbers with personal information.
Collaboration with Law Enforcement
AT&T has been collaborating closely with law enforcement agencies to pursue those responsible for the breach. As part of these efforts, significant progress has been made, leading to the apprehension of at least one individual involved in the illegal activity.
Mitigative Measures Implemented
In response to the breach, AT&T promptly implemented measures to close off the unauthorized access points and enhance the security protocols surrounding its data infrastructure. These proactive steps are aimed at safeguarding customer information and preventing future incidents of a similar nature.
The breach, while concerning, underscores AT&T's commitment to transparency and swift action in protecting customer data. By working in tandem with cybersecurity experts and law enforcement, AT&T remains dedicated to maintaining the integrity and security of its services amidst evolving cybersecurity threats.
