/cdn.vox-cdn.com/uploads/chorus_asset/file/24785180/STK158_ATT_01.jpg?fit=%2C&ssl=1)
AT&T Data Leak: Information of Millions of Customers Exposed
AT&T confirms data leakage affecting millions of customers
AT&T has acknowledged that a data leak currently circulating online contains sensitive information from over 7.6 million present-day customers and 65 million former customers. The leaked data may consist of personally identifiable information such as full names, email addresses, mailing addresses, phone numbers, social security numbers, dates of birth, AT&T account numbers, and passcodes. The incident underscores the urgent need for stronger security measures, as such breaches have become distressingly commonplace in recent times.
AT&T takes action to protect customers
In response to the data leak, AT&T has already taken action to safeguard the affected customers. The security passcodes for active accounts that have been compromised are undergoing a complete reset. The company has assured its customers that it will proactively reach out to them via email or letter to provide details about the leaked data. AT&T is committed to transparency and has taken immediate steps to mitigate the impact of the breach.
Gap in AT&T security exposes vulnerability
The confirmed leak of customer data by AT&T confirms the presence of a vulnerability related to encrypted passcodes. The vulnerability, which came to light in 2021, was initially discovered and brought to the company’s attention by TechCrunch. The investigation revealed that AT&T’s encrypted passcodes, often employed as four-digit PINs during phone calls with customer support or for in-store verification, were relatively easy to decipher. Such revelation underscores the urgent need for AT&T, along with other organizations, to evaluate and enhance their encryption strategies to maintain the highest degree of data security.
AT&T extends support to customers and remains vigilant
AT&T urges affected customers to take proactive measures to protect themselves. According to AT&T’s FAQs, customers can set up free fraud alerts facilitated by prominent credit bureaus, including Equifax, Experian, and TransUnion. Fortunately, the compromised data set, believed to be from 2019 or earlier, does not include personal financial information or call history. The company reiterates its commitment to sustaining the highest level of data security and is actively collaborating with third-party cybersecurity experts to analyze the incident. As of now, no evidence of authorized access to AT&T’s systems has been found.
