Archive for AT&T

« Older Entries

February’s AT&T Outage Was Worse Than Anyone Thought Says The FCC

Posted in Commentary with tags on July 25, 2024 by itnerd

Earlier this week, the FCC put out a report on the fact that AT&T had a massive outage back in February. And that report basically says that said outage was not only bad, it was worse than anyone thought.

“All voice and 5G data services for AT&T wireless customers were unavailable, affecting more than 125 million devices, blocking more than 92 million voice calls, and preventing more than 25,000 calls to 911 call centers,” the Federal Communications Commission (FCC) said in its report.

The 911 failures are the biggest problem here for reasons that are easy to understand. There’s nothing worse than trying to reach 911 in an emergency and being unable to get through. The FCC report does show that AT&T attempted to restore FirstNet (First Responder Network Authority) first before residential and commercial AT&T users, which sounds like the correct way to go about it.

However, the FCC also criticized AT&T for several failures on top of failing to test the implementation of the network change. The FCC pointed to a lack of oversight and controls to ensure test that processes were followed or that the processes themselves were insufficient. AT&T was also unprepared for the congestion caused by user devices attempting to reconnect to the network at the same time. AT&T’s network was insufficiently robust to mitigate the congestion.

Some of this sounds like what Canadians experienced a couple of years ago with the epic Rogers outage. A executive summary on that outage said that Rogers had a change management process that was suspect. Which sounds like AT&T’s lack of oversight and controls.

What is it with top telcos seemingly YOLO‘ing things, and having things go off the rails as a result?

John Gunn, CEO, Token 

Just as the FDA ensures the food we eat doesn’t kill us, and the FAA ensures we have safe air travel, we need a regulatory agency to implement broad and stringent regulations to ensure the reliability and continuity of the digital services that are inextricably integrated into almost every aspect of our lives. No one should be a fan of additional regulation, but clearly, we are failing without it.

Mr. Gunn is right. Telcos need to be held to a higher standard and completely accountable for stuff like this. And that’s on both sides of the border. Perhaps lawmakers will do something and ensure that YOLO’ing anything has consequences.

Leave a comment »

AT&T Paid A Ransom After Getting Pwned

Posted in Commentary with tags , on July 15, 2024 by itnerd

Last week, news came to light that AT&T had been pwned and literally every customer had been affected. Now there’s even worse news:

US telecom giant AT&T, which disclosed Friday that hackers had stolen the call records for tens of millions of its customers, paid a member of the hacking team more than $300,000 to delete the data and provide a video demonstrating proof of deletion.

The hacker, who is part of the notorious ShinyHunters hacking group that has stolen data from a number of victims through unsecured Snowflake cloud storage accounts, tells WIRED that AT&T paid the ransom in May. He provided the address for the cryptocurrency wallet that sent the currency to him, as well as the address that received it. WIRED confirmed, through an online blockchain tracking tool, that a payment transaction occurred on May 17 in the amount of 5.7 bitcoin. Chris Janczewski, head of global investigations for crypto-tracing firm TRM Labs, also confirmed using the company’s own tracking tool that a transaction occurred in the amount of about 5.72 bitcon (the equivalent of $373,646 at the time of the transaction), and that the money was then laundered through several cryptocurrency exchanges and wallets, but said there was no indication of who controlled the wallets.

A security researcher who asked to be identified only by his online handle, Reddington, also confirmed that a payment occurred. The hacker enlisted him to serve as the go-between for their negotiation with AT&T, and Reddington received a fee from AT&T for serving in that capacity. Reddington provided WIRED with proof of the fee payment. The hacker initially demanded $1 million from AT&T but ultimately agreed to a third of that.

WIRED viewed the video that the hacker says he provided to AT&T as proof to the telecom that he had deleted its stolen data from his computer. AT&T did not respond to WIRED’s request for comment.

I’ve been very clear that paying a ransom is something that you should never, ever do as it only encourages more of this behaviour from threat actors. This news really sucks for someone like me as I want these sorts of attacks by threat actors to end.

Pity.

Leave a comment »

Pretty Much Every AT&T Customer Has Had Their Data Stolen By Hackers

Posted in Commentary with tags , on July 12, 2024 by itnerd

If you’re a customer of AT&T, I have some really bad news for you. The telco announced that hackers have swiped data on pretty much all their customers:

We learned that AT&T customer data was illegally downloaded from our workspace on a third-party cloud platform. We started an investigation and engaged leading cybersecurity experts to help us determine the nature and scope of the issue. We have confirmed the access point has been secured.

Our investigation found that the downloaded data included phone call and text message records of nearly all of AT&T cellular customers from May 1, 2022 to October 31, 2022 as well as on January 2, 2023. These records identify other phone numbers that an AT&T wireless number interacted with during this time, including AT&T landline (home phone) customers. For a subset of the records, one or more cell site ID numbers associated with the interactions are also included.

At this time, we do not believe the data is publicly available. We continue to work with law enforcement in their efforts to arrest those involved. Based on information available to us, we understand that at least one person has been apprehended.

The thing that gets my attention is that this data was on a “third-party cloud platform”. After some hunting around I found this report from TechCrunch where it appears that AT&T has apparently become the latest victim of the Snowflake attacks that have been making the news lately. Ticketmaster for example is reportedly another victim of these Snowflake attacks.

Customers who are affect by this hack, and that to be clear is every AT&T customer, should expect this stolen data to be used to facilitate phishing and other attacks going forward. While AT&T does have a support article that details how you can protect yourself, the fact that all this data is out there is extraordinarily bad. And it will be bad for a long time to come.

UPDATE: John Gunn, CEO, Token had this to say:

This is what economists call a negative externality, the imposing of costs on a party, in this case ATT customers, as a direct effect of the actions of another party, in this case inadequate cybersecurity. The sudden rise in class action lawsuits where large groups of customers sue for huge sums of damages will likely soon be the remedy for this.

1 Comment »

Current And Former AT&T Customers Have Had Their Data Leaked To Unknown Parties

Posted in Commentary with tags , on April 1, 2024 by itnerd

Well, this isn’t good.

AT&T has admitted to a data breach affecting 73 million current and former customers after initially denying the leaked data originated from them. That’s bad. According to the statement put out by AT&T the following number of people have been affected:

  • 7.6 million current AT&T account holders
  • Approximately 65.4 million former account holders

The worst part is that the data is floating around a hacker forum on the dark web.

Lovely.

AT&T has set up a new webpage reporting the incident, with tips on how customers can keep their account secure. And on top of that, the page says that the passcodes for the 7.6 million AT&T customers have been reset because they were pwned.

It really seems to me that AT&T is really doing its best to try and minimize this whole incident. Which means that this could really be worse than we know.

Stay tuned for more on this story.

Leave a comment »

AT&T Outage Was Caused By A Software Update…. That Will Sound Familiar To Canadians

Posted in Commentary with tags on February 23, 2024 by itnerd

Yesterday, AT&T had a massive outage that I compared to the Rogers outage that happened almost two years ago. This outage like the Rogers outage was so crippling that it took out the ability to call 911, which is of course bad. It now seems that the cause of this outage is similar to the cause of the Rogers outage, which you can get details about here. Which is a software update caused this outage:

AT&T told ABC News in a statement ABC News that the outage was not a cyberattack but caused by “the application and execution of an incorrect process used as we were expanding our network.”

“We are continuing our assessment of today’s outage to ensure we keep delivering the service that our customers deserve,” the statement continued.

The software update went wrong, according to preliminary information from two sources familiar with the situation.

Sources have told ABC News that there was nothing nefarious or malicious about the incident.

The outage was not caused by an external actor, according to a source familiar with the situation. AT&T performs updates regularly, according to the source.

Now that may be what actually happened. But clearly that’s not a good enough answer for the FBI and DHS:

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported, according to a confidential memo obtained by ABC News, that “the cause of the outage is unknown and there are no indications of malicious activity.” CISA is an agency within DHS tasked with monitoring cyber threats.

The FCC has been in touch with AT&T to figure out what caused the outage, according to National Security Communications Advisor John Kirby.

Kirby told reporters Thursday afternoon that DHS and the FBI were looking into the outage as well and working with the tech industry and network providers to see what can be done “from a federal perspective to enhance their investigative efforts to figure out what happened here.”

“The bottom line is we don’t have all the answers,” he said. “We’re working very hard to see if we can get to the ground truth of exactly what happened.”

Like I said yesterday in my initial post about this, AT&T will have some hard questions that they need to answer. It looks like that’s starting now. And it is likely to get more and more intense for AT&T. Sucks to be them.

Leave a comment »

AT&T Is Having A Rogers Style Outage In The US

Posted in Commentary with tags on February 22, 2024 by itnerd

As I type this, AT&T is having a massive outage that stated early this morning. By massive, I mean the sort of outage that Canadians experienced almost two years ago with Rogers. Here’s the details from Reuters:

A cellular outage on Thursday hit thousands of AT&T users in the United States, disrupting calls and text messages as well as emergency services in major cities including San Francisco.

More than 73,000 incidents were reported around 8:15 a.m. ET, according to data from outage tracking website Downdetector.com.

AT&T said some of its customers were facing interruptions and it was “working urgently” to restore service. “We encourage the use of Wi-Fi calling until service is restored,” it said.

The AT&T outage has impacted people’s ability to reach emergency services by dialing 911, a post on social media platform X from the San Francisco Fire Department said.

This is bad. It’s bad enough that cell phone service is out. But when it stops people from phoning emergency services, that’s potentially life threatening. Hopefully this gets resolved quickly. And when it does, I would not at all be surprised to see some AT&T execs called to Capitol Hill to explain what happened to lawmakers and what they will be doing to ensure that it doesn’t happen again.

2 Comments »

AT&T Appears To Have Been Pwned…. 70 Million Customers May Have Been Affected

Posted in Commentary with tags , on August 20, 2021 by itnerd

Restore Privacy is breaking the news that AT&T has been pwned by hackers. Personal data from 70 million customers:

Hot on the heels of a massive data breach with T Mobile earlier this week, AT&T now appears to be in the spotlight. A well-known threat actor in the underground hacking scene is claiming to have private data from 70 million AT&T customers. The threat actor goes by the name of ShinyHunters and was also behind other previous exploits that affected Microsoft, Tokopedia, Pixlr, Mashable, Minted, and more.

And:

In the original post that we discovered on a hacker forum, the user posted a small sample of the data. We examined the sample and it appears to be authentic based on available public records. Additionally, the user who posted it has a history of major data breaches and exploits. 

While we cannot yet confirm the data is from AT&T customers, everything we examined appears to be valid. Here is the data that is available in this leak:

  • Name
  • Phone number
  • Physical address
  • Email address
  • Social security number
  • Date of birth

And what’s worse is that the hacker is working on decrypting data that he believes comprises user accounts’ PINs.

As for AT&T, they had this to say:

Based on our investigation today, the information that appeared in an internet chat room does not appear to have come from our systems.

There’s a problem with this statement. The claim that this was posted in an “internet chat room” is categorically false. The place where it was posted is well known for verified exploits and data dumps. Then there’s this from the guy who appears to have pwned AT&T:

It doesn’t surprise me
I think they will keep denying until I leak everything

I think AT&T may be joining T-Mobile in being in deep trouble. Let’s see how this plays out.

Leave a comment »

BlackBerry Passport and Classic Available On AT&T On February 20

Posted in Commentary with tags , on February 16, 2015 by itnerd

Exclusive to AT&T in the U.S., the BlackBerry Passport is available in a unique design with rounded edges starting Feb. 20 for $0 down on an AT&T Next plan, at $21.67 per month with AT&T Next 24, $27.09 with AT&T Next 18 or $32.50 per month with AT&T Next 12. You can also get the smartphone for $199.99 with a two-year agreement or at no annual commitment for $649.99. If you’re wondering about the significance of the rounded edges, it’s something that BlackBerry did for AT&T on their request.

The BlackBerry Classic on AT&T is available on the 20th for $0 down on an AT&T Next plan, at $14 per month with AT&T Next 24, $17.50 per month with Next 18 or $21 per month with AT&T Next 12. You can also get the smartphone for $49.99 with a two-year agreement or at no annual commitment for $419.99.

For more information on both devices, go to this BlackBerry blog post or AT&T’s page.

Leave a comment »

AT&T Launches LTE Roaming In Canada

Posted in Commentary with tags , on December 9, 2013 by itnerd

You’ll recall that Rogers users can roam in the US with LTE connectivity on the AT&T network. Now AT&T customers can get some LTE action in Canada as LTE roaming is now live on the Rogers network according to this announcement:

“Our agreement with Rogers affirms our commitment to deliver superior international coverage to our customers,” said Bill Hague, executive vice president, International, Alliances and Integrations, AT&T Mobility. “AT&T customers already have access to the nation’s fastest, most reliable 4G LTE network while in the United States and now they can enjoy LTE speeds while roaming in Canada.”

Rogers LTE delivers Canada’s fastest download speeds, enabling AT&T customers to stay connected while traveling north of the border. The Rogers LTE network reaches 70 percent of Canadians from coast to coast and continues to expand. This year alone, Rogers will expand its LTE coverage to 95 new markets.

AT&T Customers can surf to att.com/worldpackages to get more details.

Leave a comment »

AT&T Plans On Selling Usage Data To Advertisers… You Should Not Be Shocked By This

Posted in Commentary with tags , on July 5, 2013 by itnerd

AT&T plans on selling usage data to advertisers including wireless and Wi-Fi locations, U-verse usage, website browsing habits, mobile app usage and “other information.” This was discovered via an update to their privacy policy. Predictably, the Internet exploded with rage. However, this rage is misguided. Google makes a ton of cash doing exactly the same thing. So does Facebook. While I’m not fans of them doing this, I’m not surprised that other companies are jumping on the bandwagon as this is a great way to make money. Besides, if people were truly upset about this, there was the opportunity to stop this when Google and Facebook when they were the trailblazers in this regard. I’m sorry to say that the train has already left the station. Now, AT&T users can always opt out of this. Though, it should have been structured to allow users to opt in. But I’ve been around long enough to know that will never happen.

If this truly upsets you, a e-mail or two to your local politician might be in order? Are there any other things that you can think of to get the point across that this isn’t cool? Share your wisdom by leaving a comment.

Leave a comment »

« Older Entries