AT&T experienced two distinct cyber incidents leading to a $177 million settlement. The first breach exposed **sensitive personal data** of customers, while the second involved **call and text logs** tied to the Snowflake ecosystem. Affected individuals—current or past customers—may qualify for up to **$7,500** in compensation, split between two funds: **$149M** for compromised personal data and **$28M** for exposed communication logs. Claims require documentation of out-of-pocket losses (e.g., fraud fees, identity protection costs, ID replacement). The breach enabled risks like **identity theft, phishing, and account takeovers**, with telecom data (merging identity and call/text details) being highly sensitive. The extended filing deadline allows more victims to submit claims, but payments depend on claim volume and strength. The settlement underscores the financial and reputational fallout from large-scale data exposures in the telecom sector.
Source: https://www.findarticles.com/att-customers-file-for-up-to-7500-data-breach-payout/
TPRM report: https://www.rankiteo.com/company/att
"id": "att0092600102125",
"linkid": "att",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Current and past AT&T customers '
'(exact number unspecified)',
'industry': 'Telecom',
'location': 'United States',
'name': 'AT&T',
'size': 'Large (multinational corporation)',
'type': 'Telecommunications'}],
'customer_advisories': ['Beware of scams; official notices come only from '
'[email protected].',
'Use the provided Class Member ID or AT&T account '
'credentials to file claims.',
'Mail-in claims must be postmarked by the submission '
'deadline (address: AT&T Data Incident Settlement c/o '
'Kroll Settlement Administration LLC, P.O. Box 5324, '
'New York, NY 10150-5324).'],
'data_breach': {'data_exfiltration': 'Yes (confirmed in both incidents)',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (telecom data linked to identity '
'theft risks)',
'type_of_data_compromised': ['Personal data (e.g., names, '
'contact info)',
'Call and text logs']},
'description': 'A $177 million settlement resolves claims from two separate '
'cyber incidents affecting AT&T customers. The first incident '
'involved compromised personal data, while the second exposed '
'call and text logs tied to the Snowflake ecosystem. Affected '
'customers may qualify for payments up to $7,500, with funds '
'divided into a $149 million pool (for personal data breaches) '
'and a $28 million pool (for call/text log exposures). Claims '
'are managed by Kroll Settlement Administration, with '
'deadlines extended by court order.',
'impact': {'brand_reputation_impact': 'High (due to sensitive telecom data '
'exposure and regulatory scrutiny)',
'data_compromised': ['Personal data (e.g., names, contact info)',
'Call and text logs'],
'financial_loss': 'Up to $7,500 per affected customer (settlement '
'payouts)',
'identity_theft_risk': 'High (potential for account takeovers, '
'phishing, and identity theft)',
'legal_liabilities': '$177 million settlement',
'revenue_loss': '$177 million (settlement cost)'},
'initial_access_broker': {'high_value_targets': ['Customer personal data',
'Call/text logs']},
'investigation_status': 'Settled (pending final court approval and claim '
'reviews)',
'lessons_learned': 'Telecom data breaches can have severe privacy '
'implications, including identity theft and phishing '
'risks. Proactive customer compensation and transparent '
'communication are critical for mitigating reputational '
'and financial damage.',
'post_incident_analysis': {'corrective_actions': ['Financial compensation for '
'affected customers',
'Extended claim-filing '
'window',
'Public awareness campaigns '
'about phishing risks']},
'recommendations': ['File claims promptly with Kroll Settlement '
'Administration to maximize payout eligibility.',
'Document out-of-pocket losses (e.g., credit monitoring, '
'fraud fees) to strengthen claims.',
'Monitor official communications '
'([email protected]) and avoid phishing scams.',
'Advocate for stronger data protection measures in the '
'telecom industry.'],
'references': [{'source': 'AT&T Data Incident Settlement Official Website '
'(Kroll Settlement Administration)'},
{'source': 'Federal Trade Commission (FTC) Warnings on Telecom '
'Data Misuse'}],
'regulatory_compliance': {'fines_imposed': '$177 million (settlement, not a '
'fine)',
'legal_actions': ['Class-action lawsuit '
'settlement']},
'response': {'communication_strategy': ['Official notices via email/snail '
'mail ([email protected])',
'Dedicated settlement website',
'Customer support hotline '
'(833-890-4930)'],
'remediation_measures': ['Settlement funds for affected '
'customers',
'Extended claim-filing deadlines'],
'third_party_assistance': ['Kroll Settlement Administration '
'(claims management)']},
'stakeholder_advisories': 'Customers advised to file claims by the extended '
'deadline and submit documentation for losses.',
'title': 'AT&T Data Breach Settlement for Two Cyber Incidents',
'type': ['Data Breach', 'Unauthorized Access']}