ATT Data Breach Sees Over 70 Million Records Leaked

Key Takeaways

  • Over 70 million AT&T customer records leaked online.
  • ShinyHunters hacking group linked to the 2021 data breach.
  • Confirmed data legitimacy raises identity theft risks.

Researchers at vx-underground have reported a significant data leak involving AT&T.

The researchers claim that over 70 million records from an unspecified division of the telecommunications giant were leaked onto the hacking forum Breached.

The leaked data includes names, phone numbers, physical addresses, email addresses, social security numbers, and dates of birth.

ShinyHunters reportedly obtained this data in 2021. This hacker group is famous for its involvement in major data breaches, including those of Tokopedia, Microsoft, and Chatbooks.com.

In August 2021, the group claimed to possess a database containing the private information of approximately 70 million AT&T customers. The company had denied those claims.

The seller, operating under the alias MajorNelson, claims the data was from an unnamed AT&T division and belonged to AT&T customers in the United States. In August 2021, ShinyHunters had asked for $1 million for the entire database or $200,000 for access.

Despite these claims, AT&T has denied any data breach.

“Based on our investigation Thursday, the information that appeared in an internet chat room does not appear to have come from our systems,” the company’s statement read.

However, researchers at vx-underground, upon reviewing the leak, have confirmed the legitimacy of the stolen data.

“No information is available to indicate whether it is a third-party compromise or which ‘division’ this data is from. Regardless, upon review, we can confirm the stolen data is legitimate,” vx-underground posted on X.

Given AT&T’s status as one of the largest wireless carriers in the US, the alleged data breach poses a significant threat to affected customers. They may face risks such as identity theft, financial fraud, and other malicious activities.