Security News AT&T says leaked data of 70m people is not from its systems

vtqhtr413

Level 27
Thread author
Well-known
Aug 17, 2017
1,609
AT&T says a massive trove of data impacting 71 million people did not originate from its systems after a hacker leaked it on a cybercrime forum and claimed it was stolen in a 2021 breach of the company.

While BleepingComputer has not been able to confirm the legitimacy of all the data in the database, we have confirmed some of the entries are accurate, including those whose data is not publicly accessible for scraping.

The data is from an alleged 2021 AT&T data breach that a threat actor known as ShinyHunters attempted to sell on the RaidForums data theft forum for a starting price of $200,000 and incremental offers of $30,000. The hacker stated they would sell it immediately for $1 million.
 

Gandalf_The_Grey

Level 83
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,284
AT&T confirms data for 73 million customers leaked on hacker forum
AT&T has finally confirmed it is impacted by a data breach affecting 73 million current and former customers after initially denying the leaked data originated from them.

This comes after AT&T has repeatedly denied for the past two weeks that a massive trove of leaked customer data originated from them and or that their systems had been breached.

While the company continues to say there is no indication their systems were breached, it has now confirmed that the leaked data belongs to 73 million current and former customers.

"Based on our preliminary analysis, the data set appears to be from 2019 or earlier, impacting approximately 7.6 million current AT&T account holders and approximately 65.4 million former account holders," AT&T said in a statement shared with BleepingComputer.

The company further says that the security passcodes used to secure accounts were also leaked for 7.6 million customers.
 

SpiderWeb

Level 13
Verified
Top Poster
Well-known
Aug 21, 2020
608
I like how they are trying to play it down by saying it "only" affects 7.5 million current users and 65+ million former account holders. Why was At&t holding on to their data to begin with? We need stricter privacy laws. If you stop doing business with a company they should not be allowed to hold onto any data unless legally required or the customer requests so.
 

vtqhtr413

Level 27
Thread author
Well-known
Aug 17, 2017
1,609
I like how they are trying to play it down by saying it "only" affects 7.5 million current users and 65+ million former account holders. Why was At&t holding on to their data to begin with? We need stricter privacy laws. If you stop doing business with a company they should not be allowed to hold onto any data unless legally required or the customer requests so.
Right, 65 million inactive accounts, WTF, and I'm one of them, unbridled capitalism, I believe in capitalism but left unregulated, it's to short sighted, competitive to a fault.
 
Last edited:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top