AT&T's massive data breach: Millions of records exposed

The call and text message records of tens of millions of AT&T cellphone customers and many non-AT&T customers in mid-to-late 2022 were exposed in a massive data breach, AT&T revealed Friday.

AT&T blamed an “illegal download” on a third-party cloud platform just as the company was grappling with an unrelated major data leak.

The compromised data includes the telephone numbers of “nearly all” of its cellular customers and the customers of wireless providers that use its network between May 1, 2022 and October 31, 2022. The stolen logs also contain a record of every number AT&T customers called or texted – including customers of other wireless networks – the number of times they interacted and the call duration.

https://www.reddit.com/r/news/comments/1e1enz7/nearly_all_att_cell_customers_call_and_text/

That’s because the leak has not hit any popular underground sites: AT&T decided to disclose this one :point_up: because it actually happened under illicit access through snowflake. AT&T learned about this “second” breach incident back in April 19, and they are going back and forth about whose fault it is that the data was stolen. Mandiant has indicated this is a novel group tracked only as UNC5537. Inside details claim that the group has North American ties and at least one member based out of Turkey. The group is financially motivated and most likely with sell / auction this in private. We are still monitoring the digital underground to see if anyone post this anywhere… until then …:popcorn: