After a series of customer data exposures over the span of the past few years, which led to the AT&T data breach settlement. This repeated incident triggered a major class action case, which pushed the company to resolve it by a negotiated payout.
With the help of this AT&T settlement, the company has agreed to the distribution of $177 million funds, which are set as a final claim deadline of December 17. Those customers who have experienced that their personal information was being leaked during those breaches can fall within the qualifying group.
AT&T Data Breach Settlement 2025
Eligible customers who are under the AT&T data breach settlement may reach the amount of $7500, which depends upon the losses as well as documentation. Although the company acknowledges the breaches occurred, it acted responsibly and rejected all the claims for mishandling.
After the AT&T data breach settlement, the company stated that they remain committed to protect customer personal information. The company emphasized that the ongoing dedication to safeguarding customer data securely has become their central focus, despite the recent incident.
AT&T Settlement 2025 Overview
Managed by Kroll Settlement Administration Name of Program AT&T Data Breach Settlement 2025 Country USA Total Fund $177M Maximum Payout $7500 per Customer Claim Deadline December 18, 2025 Final Hearing January 15, 2026 Benefit Type Compensation for leaked personal data Who Gets It? Customers affected by the 2024 breaches
Source: https://developgalvestoncounty.com/att-data-breach-settlement-2025/
HACEMOS at AT&T cybersecurity rating report: https://www.rankiteo.com/company/hacemosatatt
"id": "HAC1764605702",
"linkid": "hacemosatatt",
"type": "Breach",
"date": "1/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Customers impacted '
'by 2024 breaches '
'(exact number '
'unspecified)',
'industry': 'Telecommunications',
'location': 'USA',
'name': 'AT&T',
'size': None,
'type': 'Telecommunications Company'}],
'customer_advisories': 'Eligible customers can file claims for '
'compensation up to $7,500 by December '
'18, 2025. Final hearing on January 15, '
'2026.',
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Yes (leaked personal data)',
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (personally '
'identifiable '
'information)',
'type_of_data_compromised': 'Personal '
'information'},
'description': 'After a series of customer data exposures over '
'the span of the past few years, AT&T faced a '
'major class action lawsuit due to repeated '
'breaches. The company agreed to a $177 million '
'settlement fund, with eligible customers '
'potentially receiving up to $7,500 depending on '
'documented losses. The final claim deadline is '
'December 18, 2025, and the final hearing is '
'scheduled for January 15, 2026. AT&T '
'acknowledged the breaches but denied mishandling '
'claims, emphasizing its commitment to protecting '
'customer data.',
'impact': {'brand_reputation_impact': 'Significant (repeated '
'breaches, settlement '
'required)',
'conversion_rate_impact': None,
'customer_complaints': 'Class action lawsuit filed',
'data_compromised': 'Personal information of '
'customers (2024 breaches)',
'downtime': None,
'financial_loss': '$177 million (settlement fund)',
'identity_theft_risk': 'High (personal information '
'leaked)',
'legal_liabilities': '$177 million settlement, class '
'action lawsuit',
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Resolved (settlement reached)',
'post_incident_analysis': {'corrective_actions': 'AT&T '
'emphasized '
'ongoing '
'commitment to '
'safeguarding '
'customer data '
'(no specific '
'technical '
'measures '
'disclosed)',
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': None,
'source': 'AT&T Data Breach Settlement 2025 '
'Overview',
'url': None},
{'date_accessed': None,
'source': 'Kroll Settlement Administration (AT&T '
'Data Breach Settlement Program)',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': 'Class action '
'lawsuit, settlement '
'agreement ($177 '
'million)',
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Public statements '
'emphasizing commitment '
'to data protection; '
'settlement notifications '
'to affected customers',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': None,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': 'Kroll Settlement '
'Administration (managing '
'settlement)'},
'stakeholder_advisories': 'Customers notified via settlement '
'administration (Kroll); public '
'statements issued by AT&T',
'title': 'AT&T Data Breach Settlement 2025',
'type': ['Data Breach', 'Class Action Settlement']}