AT&T Attack Reveals 73 Million Customer Records Exposed On The Dark Web

In a recent statement, AT&T, the largest telecommunications company in the United States, revealed they discovered a dataset for sale on the "dark web" containing information for approximately 7.6 million current AT&T account holders and 65.4 million former users, totaling around 73 million affected accounts.

The data released included passcodes (PIN numbers) and Social Security numbers from 2019 or earlier. While it did not contain other personal financial information or call history, it could potentially include email and mailing addresses, phone numbers, and birthdates.

AT&T has contacted all affected customers via email or mail to inform them of the breach and instruct them to reset their passcodes. If you're an AT&T customer, be highly critical of any email asking you to change your password. Ensure it is genuinely from AT&T, as cybercriminals may exploit this situation by sending fake emails with malicious links. If you're unsure about an email's legitimacy, call AT&T support and request another reset link while on the phone.

The cause of the breach is still unknown, and it's unclear whether it originated from AT&T or one of its vendors. AT&T has launched an investigation and will likely employ computer forensics specialists to identify the incident's cause. Additionally, the organization will need to remove any installed malware from the software running its customer account system without disrupting service for unaffected customers. This process, alongside the investigation, legal fees, and other related costs, will be expensive.

At Microtech, we emphasize the importance of proactive cybersecurity measures. While no solution is entirely impenetrable, robust security systems can prevent the majority of hacking attempts. It is significantly more costly to address the consequences of a cyber-attack than to prevent one.

If you're concerned about your organization's security, request a FREE Consult from our team. We'll analyze your network to identify any exposed entry points that hackers could exploit. Additionally, we'll provide advice on collaborating with third-party vendors to ensure your and your customers' data is as secure as possible.