- AT&T has confirmed a significant data breach impacting millions of its customers.
- The breach involves sensitive information, including passcodes and social security numbers, which has been circulating on the dark web for an extended period.
- The company has acknowledging the severity of the situation by taking drastic measures to protects its users.
AT&T has revealed that data leaked online affects over 7.6 million current customers and approximately 65 million former customers.
Among the compromised data are critical details such as full names, email addresses, mailing addresses, phone numbers, social security numbers, dates of birth, AT&T account numbers, and passcodes.
The telecommunications giant has taken proactive measures, resetting the security passcodes of active customers who have been affected.
AT&T is actively communicating with affected customers through various channels, including email and traditional mail, to inform them about the extent of the breach and the measures being implemented to address it.
This includes providing details about the specific data that may have been exposed and outlining the steps being taken to mitigate risks and safeguard customer accounts.
The revelation of the leaked data’s authenticity came after AT&T was notified by TechCrunch about vulnerabilities in its encrypted passcodes. These passcodes, typically four-digit numerical PINs used for account security during interactions with AT&T support or in-store verification processes, were found to be susceptible to decryption by security researchers.
This finding underscores the urgency for enhanced security measures to protect customer data from unauthorized access.
In response to the breach, AT&T is offering affected customers the option to set up free fraud alerts through credit bureaus Equifax, Experian, and TransUnion.
Despite the concerning nature of the breach, AT&T reassures customers that the leaked data, which appears to be from 2019 or earlier, does not include personal financial information or call history. However, the company remains vigilant and is collaborating with external cybersecurity experts to conduct a thorough analysis of the situation.
As of now, AT&T has not found any evidence of authorized access to its systems beyond the data leak.
Nonetheless, the company remains committed to investigating the incident comprehensively and implementing additional security measures to prevent future breaches. This includes enhancing encryption protocols and strengthening cybersecurity protocols to fortify its systems against potential threats.
The data breach serves as a stark reminder of the ever-present risks associated with cyber threats and the importance of robust security measures in safeguarding customer information.
AT&T acknowledges the gravity of the situation and emphasizes its commitment to transparency, accountability, and customer protection in addressing the breach.
By promptly addressing the issue and taking proactive steps to mitigate risks, AT&T aims to restore trust and confidence among its customer base while reaffirming its dedication to data security and privacy.
