In a significant data breach impacting approximately 9 million customers, AT&T has notified its users that personal information may have been compromised. This incident stems from a hack targeting one of AT&T's marketing vendors rather than the company itself.
AT&T reached out to affected customers via email, and discussions on the company's forums confirmed that many users received the alert. "We sent the email and can confirm that an attack occurred," stated an AT&T representative. Users expressed confusion about whether the emails were legitimate or part of a phishing scam.
"We sent the email and can confirm that an attack occurred,"
The breach exposed sensitive Customer Proprietary Network Information (CPNI) of the affected individuals, including full names, phone numbers, and email addresses. Additionally, for a smaller subset of users, details such as plans, monthly charges, and minutes used were also compromised. However, more sensitive data—like payment methods and Social Security numbers—remained secure. "You shouldn't see strange charges on your credit card as a direct result of this attack," reassured an AT&T spokesperson.
"You shouldn't see strange charges on your credit card as a direct result of this attack,"
By the Numbers
For those potentially impacted, AT&T's email contained crucial information regarding the breach. Currently, the company does not recommend any specific actions but advises customers to remain vigilant regarding unusual activity linked to their phone numbers. Furthermore, users might consider opting out of AT&T's sharing of their CPNI with third parties, as this breach illustrates the risks associated with such practices.
Race Results
This breach is not an isolated incident in the telecommunications industry. Earlier this year, Verizon faced a similar situation when hackers attacked one of its third-party vendors. Although that breach resulted in a data dump released on open forums, it contained no personally identifiable information, leading Verizon to cut ties with the vendor.
