Hackers broke right into a cloud platform utilized by AT&T and accessed the cellphone information of “nearly all” of its mobile clients, AT&T introduced on Friday.
AT&T stated the stolen information accommodates cellphone numbers of each mobile and landline clients, in addition to AT&T information of calls and textual content messages throughout a six-month interval between Might 1, 2022 and October 31, 2022.
AT&T stated a few of the stolen information consists of newer information from January 2, 2023 for a smaller, unspecified variety of clients, in addition to name information of shoppers with different mobile carriers that depend on AT&T’s community.
A number of the information embrace cell website identification numbers linked to calls and texts, which can be utilized to work out the approximate location of the place a name was made or message despatched.
The downloaded information does not embrace the content material of any calls or texts, or their time stamps, in response to AT&T. It additionally does not have any particulars corresponding to Social Safety numbers, dates of delivery, or different personally identifiable info.
AT&T stated it discovered of the information breach on April 19, and that it’s unrelated to an earlier safety incident in March. The corporate stated it doesn’t imagine the information is publicly obtainable presently, and it continues to work with legislation enforcement to establish and apprehend these concerned. At the very least one particular person is alleged to have been arrested.
AT&T instructed TechCrunch that the latest compromise of buyer information have been stolen from the cloud information big Snowflake throughout a latest spate of information thefts concentrating on Snowflake’s clients. Different firms which have confirmed stolen information from Snowflake embrace Ticketmaster, QuoteWizard, and others.
Cybersecurity researchers from incident response agency Mandiant say the hacker group is usually primarily based within the US and people concerned are financially motivated.
AT&T clients involved about phishing and smishing scams ought to go to the corporate’s help article, which additionally consists of recommendation on tips on how to shield your self from on-line fraud.