In 2024, AT&T suffered **two major data breaches** exposing highly sensitive customer information. The **first breach (March 30, 2024)** leaked **names, addresses, phone numbers, email addresses, dates of birth, account passcodes, billing numbers, and Social Security numbers (SSNs)** on the dark web, enabling identity theft and financial fraud risks. The **second breach (July 12, 2024)** involved unauthorized access to **telephone numbers, call records, interaction frequencies, and cell site identification numbers** via a third-party cloud platform. Some customers were affected by **both incidents**, with potential payouts reaching **$7,500 per victim** ($5,000 for SSN exposure, $2,500 for call data leaks). AT&T agreed to a **$177 million settlement**, one of the largest in telecom history, acknowledging the severity of the **data exposure** and its **long-term risks**, including fraud, reputational damage, and legal liabilities. The breaches impacted **millions of current and former customers**, with claims requiring documentation of losses. Final payouts depend on the total number of valid claims, with distribution expected in **early 2026** post-court approval.
Source: https://azat.tv/en/att-data-breach-settlement-final-claim-deadline-2024/
AT&T cybersecurity rating report: https://www.rankiteo.com/company/att
"id": "ATT1803418111425",
"linkid": "att",
"type": "Breach",
"date": "3/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Millions (exact number '
'unspecified)',
'industry': 'Telecommunications',
'location': 'United States',
'name': 'AT&T',
'size': 'Large (millions of customers affected)',
'type': 'Telecommunications Company'}],
'attack_vector': ['Dark Web Data Leak (March 2024)',
'Third-Party Cloud Platform Exploitation (July 2024)'],
'customer_advisories': 'Affected customers should gather documentation (e.g., '
'proof of identity, records of losses) to support '
'their claims. Maximum payouts: $5,000 (March 2024 '
'breach), $2,500 (July 2024 breach), or $7,500 '
'combined for those impacted by both. Payments are pro '
'rata based on total claims.',
'data_breach': {'data_exfiltration': 'Yes (data appeared on the dark web in '
'March 2024; call records downloaded in '
'July 2024)',
'number_of_records_exposed': 'Millions (exact number '
'unspecified)',
'personally_identifiable_information': ['Names',
'Addresses',
'Phone numbers',
'Email addresses',
'Dates of birth',
'Account passcodes',
'Social Security '
'numbers (SSNs)'],
'sensitivity_of_data': 'High (includes SSNs, call records, '
'and account details)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Call records and metadata']},
'date_detected': ['2024-03-30', '2024-07-12'],
'description': 'AT&T agreed to pay $177 million to victims of two major 2024 '
'data breaches that exposed sensitive customer data, including '
'Social Security numbers and call records. Affected customers '
'must file claims by December 18, 2025, for compensation, with '
'maximum individual payouts reaching $7,500 for those impacted '
'by both incidents. The settlement is one of the largest in '
'telecom history, reflecting the severity of the breaches and '
'the potential risks to affected individuals.',
'impact': {'brand_reputation_impact': 'Significant; one of the largest '
'payouts in telecom history, reflecting '
'severe public and legal scrutiny',
'customer_complaints': 'Class action lawsuits consolidated in '
'federal court',
'data_compromised': ['Names',
'Addresses',
'Phone numbers',
'Email addresses',
'Dates of birth',
'Account passcodes',
'Billing numbers',
'Social Security numbers (SSNs)',
'Call records (telephone numbers interacted '
'with, call frequency, cell site '
'identification numbers)'],
'financial_loss': '$177 million (settlement fund)',
'identity_theft_risk': 'High (due to exposure of SSNs and personal '
'data)',
'legal_liabilities': '$177 million settlement, class action '
'lawsuits',
'payment_information_risk': 'Moderate (billing numbers exposed)',
'systems_affected': ['AT&T customer databases',
'Third-party cloud platform (July 2024 '
'breach)']},
'initial_access_broker': {'data_sold_on_dark_web': 'Yes (March 2024 breach)',
'high_value_targets': ['Social Security numbers',
'Call records and metadata']},
'investigation_status': 'Settlement agreed; final approval hearing scheduled '
'for January 15, 2026. Payments expected to begin '
'distribution in early 2026 after administrative '
'processing.',
'lessons_learned': 'The settlement highlights the critical need for stronger '
'data security measures, corporate accountability, and '
'proactive customer protection in the digital age. The '
'scale of the payout underscores the growing legal and '
'financial risks associated with data breaches, '
'particularly when sensitive information like SSNs is '
'exposed.',
'post_incident_analysis': {'corrective_actions': ['$177 million settlement '
'fund for affected '
'customers.',
'Enhanced legal and '
'administrative processes '
'for claims verification.',
'Public acknowledgment of '
'harm and need for '
'accountability (though no '
'admission of wrongdoing).'],
'root_causes': ['Inadequate protection of '
'sensitive customer data (e.g., '
'SSNs, call records).',
'Vulnerabilities in third-party '
'cloud platform security (July '
'2024 breach).',
'Failure to prevent data '
'exfiltration to the dark web '
'(March 2024 breach).']},
'recommendations': ['Enhance data encryption and access controls, especially '
'for third-party cloud platforms.',
'Implement stricter monitoring for dark web leaks and '
'unauthorized data access.',
'Improve incident response transparency and timeliness in '
'public disclosures.',
'Provide affected customers with long-term identity theft '
'protection and credit monitoring services.',
'Strengthen compliance with data protection regulations '
'to mitigate future legal and financial risks.'],
'references': [{'source': 'Rolling Out'},
{'source': 'PIX11'},
{'source': 'AT&T Data Incident Settlement Website'}],
'regulatory_compliance': {'legal_actions': 'Class action lawsuits '
'consolidated in federal court; '
'settlement approved pending final '
'hearing (January 15, 2026)'},
'response': {'communication_strategy': 'Public advisories, official '
'settlement website, media coverage '
'(e.g., Rolling Out, PIX11)',
'incident_response_plan_activated': 'Yes (settlement process '
'initiated)',
'recovery_measures': 'Settlement fund of $177 million for '
'affected customers'},
'stakeholder_advisories': 'Customers advised to file claims by December 18, '
'2025, via the official settlement website. Options '
'to opt out or object by November 18, 2025, are '
'available for those wishing to pursue individual '
'legal action.',
'title': 'AT&T 2024 Data Breaches Settlement',
'type': ['Data Breach', 'Unauthorized Data Access']}