Breach cyber

AT&T

Jun 16, 2024 2 min read
AT&T

AT&T faced two major data breaches in 2024, announced on **March 30** and **July 12**, exposing sensitive customer data. The **March breach** compromised personal information including **names, addresses, phone numbers, emails, dates of birth, account passcodes, billing account numbers, and Social Security numbers** of U.S. customers. The **July breach** involved **telephone numbers of current/former AT&T customers and their interaction records**, potentially exposing call logs and associated metadata. The breaches led to litigation, with AT&T denying wrongdoing but agreeing to a settlement. Eligible victims (Californians and others) can claim **up to $5,000 (March breach) or $2,500 (July breach)** for documented losses, with deadlines set for **November 18, 2025**. The exposed data heightens risks of **identity theft, phishing, financial fraud, and reputational harm**, as sensitive personally identifiable information (PII) and communication records were accessible to unauthorized parties. The incidents underscore systemic vulnerabilities in AT&T’s data security, prompting legal recourse for affected individuals.

Source: https://www.desertsun.com/story/news/nation/california/2025/09/25/how-to-claim-money-in-att-settlement-data-breach/86335455007/

TPRM report: https://www.rankiteo.com/company/att

"id": "att3592735092525",
"linkid": "att",
"type": "Breach",
"date": "6/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'All U.S. individuals whose data '
                                              'was included in either breach '
                                              '(specific numbers not provided)',
                        'industry': 'Telecommunications',
                        'location': 'United States (primarily affecting '
                                    'Californians)',
                        'name': 'AT&T',
                        'type': 'Telecommunications Company'}],
 'customer_advisories': 'Eligible individuals advised to file claims by '
                        'November 18, 2025, via online or mail; documentation '
                        'required for higher compensation tiers',
 'data_breach': {'data_exfiltration': "Likely (data was 'accessible' in the "
                                      'breach)',
                 'personally_identifiable_information': 'Yes (names, '
                                                        'addresses, telephone '
                                                        'numbers, email '
                                                        'addresses, dates of '
                                                        'birth, SSNs, account '
                                                        'passcodes, billing '
                                                        'account numbers)',
                 'sensitivity_of_data': 'High (includes SSNs, account '
                                        'passcodes, and billing details)',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information (PII)',
                                              'Account Information',
                                              'Telephone Interaction Records']},
 'date_publicly_disclosed': ['2024-03-30', '2024-07-12'],
 'description': 'AT&T faced two separate data breaches announced in 2024, '
                'leading to a settlement for affected individuals in the U.S., '
                'particularly Californians. The breaches involved exposure of '
                'personal data elements, including names, addresses, telephone '
                'numbers, email addresses, dates of birth, account passcodes, '
                'billing account numbers, Social Security numbers, and '
                'telephone interaction records. AT&T denied wrongdoing but '
                'established a settlement process administered by Kroll '
                'Settlement Administration, allowing eligible individuals to '
                'claim financial compensation for documented losses (up to '
                '$5,000 for the first breach and $2,500 for the second). The '
                'deadline to file claims is November 18, 2025.',
 'impact': {'brand_reputation_impact': 'Negative (privacy concerns, legal '
                                       'settlement)',
            'customer_complaints': 'Backlash and privacy concerns reported',
            'data_compromised': ['Names',
                                 'Addresses',
                                 'Telephone numbers',
                                 'Email addresses',
                                 'Dates of birth',
                                 'Account passcodes',
                                 'Billing account numbers',
                                 'Social Security numbers',
                                 'Telephone interaction records (numbers of '
                                 'customers and those they interacted with)'],
            'identity_theft_risk': 'High (due to exposure of PII like SSNs, '
                                   'account details)',
            'legal_liabilities': 'Settlement established for affected '
                                 'individuals; potential fines or legal '
                                 'actions not specified'},
 'investigation_status': 'Settlement process ongoing; final approval hearing '
                         'scheduled for December 3, 2024 (Texas)',
 'references': [{'source': 'The Desert Sun (Gannett)'},
                {'source': 'Kroll Settlement Administration FAQs',
                 'url': 'https://telecomdatasettlement.com'}],
 'regulatory_compliance': {'legal_actions': 'Class-action lawsuit leading to '
                                            'settlement'},
 'response': {'communication_strategy': 'Email notices sent to settlement '
                                        'class members (from '
                                        '[email protected]); '
                                        'settlement website '
                                        '(telecomdatasettlement.com); FAQs and '
                                        'contact helpline (833-890-4930)',
              'incident_response_plan_activated': 'Yes (settlement process '
                                                  'initiated)',
              'recovery_measures': 'Settlement claims process for affected '
                                   'individuals',
              'third_party_assistance': 'Kroll Settlement Administration '
                                        '(settlement administrator)'},
 'stakeholder_advisories': 'Email notices to settlement class members; '
                           'settlement website and helpline for inquiries',
 'title': 'AT&T Data Breach Settlement (2024)',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Breach cyber

Gainsight

public 2 min read
Gainsight experienced a security breach involving its Salesforce-connected app, where suspicious activity was detected. While the company’s CEO, Chuck…
Jeremy C Jeremy C
Breach cyber

Gainsight

public 2 min read
Gainsight, a customer success platform, suffered a breach linked to its Salesforce-connected app, initially flagged by Salesforce due to unusual…
Jeremy C Jeremy C
Breach cyber

Gainsight

public 2 min read
Gainsight, a customer success management software firm, experienced a breach in its systems that compromised Salesforce customer tokens. The incident…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.