AT&T Data Breach Alert🚨

For the past few months, AT&T has faced significant scrutiny from customers due to multiple data breaches taking place within their networks. First in March of 2024, AT&T publicly acknowledged a major data breach that compromised the personal information of approximately 73 million users. 

What Personal Information Was Stolen in the March Breach? 

AT&T reports that the stolen data may vary by account, but thieves had access to customers' full names, email addresses, mailing addresses, phone numbers, Social Security numbers, dates of birth, AT&T account numbers, and passcodes. This breach followed the earlier incident in March 2024.

Second AT&T Data Breach Revealed in July 2024

On July 12th, 2024, the company reported a second, even more extensive breach, involving the theft of phone and text message records for over 100 million customers. 

AT&T Overlooked Data Breach Warnings

The extent of the July breach has resulted in numerous individual claims and class action lawsuits from current and former customers seeking compensation for the exposure and potential damage caused by these security failures.

These legal efforts aim to secure financial compensation for the potential harm and exposure caused by the breaches.

The lawsuits against AT&T suggest that the company may have known about the data breaches as early as 2021 but did not inform affected customers until evidence surfaced online. Rather than carrying out a thorough investigation into the alleged breach and notifying customers as legally required, AT&T insisted that the breach claims were unfounded and failed to inform its customers. Individuals are now joining the AT&T data breach lawsuit, accusing the company of inadequately protecting their current and former customers' data. 

The complaints highlight AT&T’s delays in recognizing the breach and informing customers, which plaintiffs argue prolonged the exposure of personal data and heightened the risk of identity theft and fraud. 

Essential Information on the July breach

Internal investigations have revealed that hackers unlawfully accessed and copied call logs stored on a third-party cloud platform in April 2024. The compromised data includes records of calls and texts from May 1 to October 31, 2022, and January 2, 2023. While the content of the calls and messages, as well as customers' personal information, was not compromised, the records did include phone numbers. 

This metadata is highly sensitive, as it can reveal patterns and connections between people when analyzed at large scales. 

AT&T began its investigation and acknowledged the breach only after sensitive client information was publicly released. The company noted in the SEC filing that although the data did not include customer names, phone numbers can often be cross-referenced with publicly available online tools.

Risks to Customers from the AT&T Data Breach

If your personal information was compromised in the AT&T data breach, it could be used against you in several ways:

• Identity Theft: With access to your Social Security number and other personal details, a hacker might impersonate you to open new credit accounts, apply for loans, or obtain services in your name, potentially damaging your credit rating and causing financial loss.
• Financial Fraud: Hackers could access and drain your existing bank accounts or deceive financial institutions to gain access to your funds.
• Phishing Attacks: Using your personal information, hackers could create convincing phishing emails or messages that appear to come from legitimate sources, leading to further theft of your financial details or login credentials.
• Account Takeover: Detailed personal information can help attackers answer security questions or request password resets on your accounts, such as social media or financial services, resulting in unauthorized access.
• Tax Fraud: Hackers could use your Social Security number to falsely file tax returns in your name and steal tax refunds.
• Medical Identity Theft: With your Social Security number and other personal information, someone could receive medical care under your identity, leading to medical bills charged to you and potentially corrupting your medical records.
• Utilities Fraud: Your information could be used to set up utility accounts (like electricity, water, and gas) in your name at different addresses, potentially going unnoticed until debts accrue.
• Legal Implications: If hackers commit crimes using your identity, you might be implicated or need to prove your innocence.
• Loss of Privacy: Knowing your home address and personal details, hackers or malicious parties could potentially harass you or commit crimes such as stalking or burglary.
• Long-Term Security Risks: Beyond the immediate misuse of your information, stolen data might be sold on the dark web, leading to ongoing risks and threats.

Steps to Take if Your Information Was Compromised in the AT&T Data Breach

In light of the AT&T data breach, affected customers are advised to take proactive measures to safeguard their information. Start by changing your AT&T account passcode without delay. Additionally, remain vigilant by regularly monitoring your account activity and credit reports.

Trust Our IT Superheroes to Protect Your Data

Between financial loss, reputational damage, and potential legal trouble, data breaches can cause numerous problems for your business. Just keeping on top of the multiple types of data breaches alone is a challenge. It’s easy for organizations to get overwhelmed. That’s why businesses in New York and New Jersey trust the IT superheroes at Tekie Geek.

Services like managed IT and co-managed IT provide the guidance you need to navigate cybersecurity in an increasingly complex threat landscape. Business continuity planning helps you prepare for potential disruptions and ensures your data stays protected.

Contact us today to learn more about our IT services!

‍