News

AT&T Data Breach Affects Nearly All Customers

AT&T Data Breach Affects Nearly All Customers
Images are for illustrative purposes only and may not accurately represent reality

Massive hack exposes phone records and metadata

AT&T customers, brace yourselves for some unsettling news. The telecommunications giant has confirmed a data breach that hit nearly all of its 110 million wireless subscribers. The breach, which took place between May 1, 2022, and October 31, 2022, resulted in the theft of phone numbers, text data, and phone records.

While the content of calls and texts remains secure, the breach did expose metadata such as the numbers contacted and the duration and count of calls and texts. Additionally, hackers obtained cell site identification numbers which could potentially reveal users' locations. Cybersecurity experts warn that this metadata could provide a detailed insight into an individual's life, habits, and associations, making it a valuable asset for those with malicious intentions.

In response to the breach, AT&T has published a support website for customers and has informed regulators. The company disclosed the breach before the market opened on Friday, July 12, and had been aware of the issue since April 19. They have reassured customers that the stolen data is not publicly available and that law enforcement has made at least one arrest in connection with the hack.

The breach has been blamed on cloud data partner Snowflake, which was allegedly targeted by hackers aiming for AT&T's business customers. However, Snowflake has retorted by saying that the affected companies, including AT&T, did not use multi-factor authentication to secure their accounts. This oversight allowed for over 160 companies to be impacted by such breaches.

What to do if you're an AT&T customer

If you're an AT&T customer, expect to receive a notification from the company regarding the breach. In the meantime, it's recommended that you remain vigilant for any suspicious activity and consider changing passwords or adding extra security measures to your accounts. The safety of your personal information is crucial, and staying informed and proactive can help protect against cyber threats.

About the hacking group

The hacking group responsible for the attack has been identified as UNC5537. Though little is known about them, cybersecurity analysts suggest they were financially motivated in carrying out the hack.

Despite the severity of the breach, AT&T assures customers that they are working closely with law enforcement to prevent the stolen data from causing any further harm. Keep an eye out for updates from AT&T as the situation develops.

Read next