AT&T addressing customer data breach

DALLAS — AT&T has released a statement regarding a customer data breach that occurred in April of 2024.

According to the company, in April AT&T learned that customer data was illegally downloaded from its workspace on a third-party cloud platform. As a result they launched an investigation and engaged leading cybersecurity experts to understand the nature and scope of the criminal activity.

“We have taken steps to close off the illegal access point,” AT&T wrote. “We are working with law enforcement in its efforts to arrest those involved in the incident. We understand that at least one person has been apprehended.”

From AT&T’s investigation, the compromised data reportedly includes files containing AT&T records of calls and texts of nearly all of AT&T’s cellular customers, customers of mobile virtual network operators (MVNOs) using AT&T’s wireless network, as well as AT&T’s landline customers who interacted with those cellular numbers between May 1, 2022 - October 31, 2022. Additionally, the compromised data also includes records from January 2, 2023, for (according to AT&T) a very small number of customers. The records identify the telephone numbers an AT&T or MVNO cellular number interacted with during these periods. For a subset of records, one or more cell site identification number(s) associated with the interactions are also included.

AT&T said that the data does not contain the content of calls or texts, personal information such as Social Security numbers, dates of birth, or other personally identifiable information. It also supposedly does not include information related to customer usage details, like call time stamps or texts. They cautioned that while the data does not include customer names, there are often ways, using publicly available online tools, to find the name associated with a specific telephone number.

“At this time, we do not believe that the data is publicly available,” AT&T stated. “Our top priority, as always, is our customers. We will provide notice to current and former customers whose information was involved along with resources to help protect their information. We sincerely regret this incident occurred and remain committed to protecting the information in our care. Customers can visit att.com/DataIncident for more information.”