AT&T It said 7.6 million current customers, along with 65.4 million former account holders, were affected by the latest breach, which released sensitive data on the dark web. TechCrunch first reported Saturday morning that the company had reset passwords for all active accounts affected, and AT&T confirmed the move in an update posted on its website. support page. The data set, which AT&T said “appears to be from 2019 or earlier,” includes names, home addresses, phone numbers, dates of birth and Social Security numbers. TechCrunch.
TechCrunch A security researcher says it alerted AT&T on Monday that the leaked data could be used to access customers’ accounts after discovering that the records contained easily decipherable encrypted passwords. AT&T said today that it has “launched a robust investigation supported by internal and external cybersecurity experts.” The information surfaced on the dark web about two weeks ago, according to AT&T.
This comes three years after a hacker known as ShinyHunters claimed in 2021 that they obtained the account information of 73 million AT&T customers. This was reported by AT&T at that time Bleeping Computer that it wasn’t compromised and that the data samples the hacker shared online “didn’t come from our systems.” The company now says that “it is not yet known whether the information in these areas originated with AT&T or one of its suppliers.” To date, there is “no evidence of unauthorized access to their systems that resulted in the leak of the dataset.”
AT&T said it will contact both current and former account holders affected by the leak. The company also says it will offer credit monitoring to these customers “where possible.”
This article contains affiliate links; we may earn a commission if you click on such a link and make a purchase.