AT&T Appears To Have Been Pwned…. 70 Million Customers May Have Been Affected

Restore Privacy is breaking the news that AT&T has been pwned by hackers. Personal data from 70 million customers:

Hot on the heels of a massive data breach with T Mobile earlier this week, AT&T now appears to be in the spotlight. A well-known threat actor in the underground hacking scene is claiming to have private data from 70 million AT&T customers. The threat actor goes by the name of ShinyHunters and was also behind other previous exploits that affected Microsoft, Tokopedia, Pixlr, Mashable, Minted, and more.

And:

In the original post that we discovered on a hacker forum, the user posted a small sample of the data. We examined the sample and it appears to be authentic based on available public records. Additionally, the user who posted it has a history of major data breaches and exploits. 

While we cannot yet confirm the data is from AT&T customers, everything we examined appears to be valid. Here is the data that is available in this leak:

  • Name
  • Phone number
  • Physical address
  • Email address
  • Social security number
  • Date of birth

And what’s worse is that the hacker is working on decrypting data that he believes comprises user accounts’ PINs.

As for AT&T, they had this to say:

Based on our investigation today, the information that appeared in an internet chat room does not appear to have come from our systems.

There’s a problem with this statement. The claim that this was posted in an “internet chat room” is categorically false. The place where it was posted is well known for verified exploits and data dumps. Then there’s this from the guy who appears to have pwned AT&T:

It doesn’t surprise me
I think they will keep denying until I leak everything

I think AT&T may be joining T-Mobile in being in deep trouble. Let’s see how this plays out.

Leave a Reply

%d bloggers like this: