If you’re an AT&T customer, now is the time to be vigilant. Your account details may be part of a recently discovered database available on underground hacking forums.
AT&T Data Breach Reveals Sensitive Customer Information
Recent investigations by Hackread have uncovered that hackers are peddling a database containing the personal information of up to 86 million customers, reportedly stolen from an AT&T data breach in 2024. This database first appeared on a Russian cybercrime forum on May 15 and re-emerged on June 3, subsequently spreading across various other forums.
While there is some disagreement regarding the number of records compromised—Hackread estimates 86 million, while a different post suggests around 70 million—what remains alarming is the specific type of data that has been compromised.
Types of Exposed Data
Hackread’s analysis reveals that the leaked database includes the following critical pieces of information:
- Full Names
- Birth Dates
- Phone Numbers
- Email Addresses
- Physical Addresses
- Social Security Numbers (amounting to 43,989,219 total)
Worse yet, although the birthdays and Social Security numbers were initially stored in an encrypted format, hackers have successfully decrypted this information. As a result, sensitive details that were once protected are now easily accessible in plain text. In essence, if you are an AT&T customer, your full name, home address, date of birth, phone number, and Social Security number are likely included in this leaked data.
Recurring Data Breach Issues
This latest incident is not the first occurrence of data compromise involving AT&T. A previous breach in July 2024 affected nearly the entirety of its cellular customer base, yet the company initially claimed that the stolen information had not reached the web. Another breach in March 2024 compromised the data of 7.6 million active customers and 65.4 million former customers, concerning data from 2019 and earlier.
The current database for sale appears to have been gradually compiled from several data breaches over time, including the August 2024 National Public Data breach, where a hacker leaked over 3.2 billion Social Security numbers along with other personal data. Without an official confirmation from AT&T, the specific origins of the compromised data remain uncertain.
Hackread’s examination suggests that the latest offering is "well-structured and clearly formatted," divided into three CSV files. This organization makes it straightforward to understand each type of data. The previously encrypted Social Security numbers have been meticulously decrypted, indicating that something beyond a mere extraction from AT&T has occurred; considerable effort was likely put into amalgamating data from multiple breaches to create this comprehensive database.
Steps to Protect Yourself
In light of this breach, it is crucial for affected individuals to take immediate measures to secure their accounts. Here are some recommended actions:
-
Change Your AT&T Password: This is your first line of defense against unauthorized access.
-
Implement Multi-Factor Authentication: If you haven’t done so already, enabling this feature adds an extra security layer to your account.
-
Monitor Your Credit Reports: Keep a close watch for any signs of fraudulent activity that may arise due to the breach.
-
Consider Freezing Your Credit: Temporarily freezing your credit can serve as a preventative measure against identity theft.
-
Stay Alert for Scams: Being aware of potential phishing attempts is vital, as the leaked information is sensitive. Cybercriminals could easily impersonate you, jeopardizing not only your information but also that of your friends and colleagues.
Conclusion
The ongoing issues surrounding data breaches emphasize the importance of staying informed and proactive in protecting personal information. Awareness and timely action can significantly reduce the risks associated with compromised data. If you are an AT&T customer, take these precautions seriously to safeguard your information against potential threats that have arisen from this troubling incident.
