In 2022, a security breach at AT&T resulted in the data of nearly all customers being downloaded to a third-party platform. This breach impacted customers of AT&T’s cellular services, as well as customers of mobile virtual network operators using AT&T’s wireless network, and landline customers who interacted with those cellular numbers. The compromised data included records of calls and texts between May 1, 2022, and Oct. 31, 2022, affecting over 100 million U.S. customers and almost 2.5 million business accounts. AT&T has launched an investigation and engaged cybersecurity experts to understand the nature and scope of the breach.
AT&T stated that the compromised data does not contain the content of calls or texts, Social Security numbers, dates of birth, or other personally identifiable information. Additionally, the data does not include customer names or time stamps of calls or texts. However, AT&T acknowledged that there are ways to potentially link telephone numbers to customer names using publicly available online tools. The company does not believe that the compromised data is publicly available, but it did include records from Jan. 2, 2023, for a small number of customers, identifying telephone numbers and interactions with AT&T or MVNO cellular numbers.
AT&T reassured customers that it is cooperating with law enforcement on the incident and that at least one person has been apprehended in connection with the breach. The company is working to ensure the security of its systems and prevent future incidents. This breach adds to the list of major data breaches that have occurred in 2022, highlighting the ongoing threat of cyberattacks on large corporations and their customers. AT&T’s breach serves as a reminder of the importance of strong cybersecurity measures to protect sensitive customer data from unauthorized access and misuse.
As the investigation into the breach continues, AT&T is taking steps to enhance its security protocols and prevent similar incidents from occurring in the future. The company is committed to transparency and providing timely updates to affected customers as more information becomes available. In the wake of this breach, AT&T is reevaluating its data protection measures and working to strengthen its cybersecurity defenses. Customers are urged to remain vigilant and monitor their accounts for any suspicious activity, as well as to follow any guidance provided by AT&T to safeguard their personal information.
