AT&T has reached a significant class-action settlement of $177 million (£133.9 million), potentially benefiting millions of its current and former customers in the United States following two major data breaches in the past. Based on the information revealed and recorded losses, compensation could amount to approximately $7,500 (£5,600).
Here's what you need to know.
When and How the Data Breach Occurred
In 2024, AT&T revealed two separate security breaches that compromised the personal information of tens of millions of its customers.
The first breach, announced in March 2024, involved a dataset dating from 2019 or earlier that had surfaced on the dark web. The leaked information reportedly included names, addresses, phone numbers, email addresses, dates of birth, billing account numbers, passcodes, and for some customers, even Social Security numbers.
The second incident, revealed in July 2024, involved a cloud storage platform operated by a third party. AT&T has reported that the metadata associated with calls and texts for almost all customers, which includes phone numbers, call durations, and interaction counts, was downloaded illegally. The content of calls remained secure, yet the metadata raised significant concerns regarding privacy.
The breach of information has led to a surge of legal actions. In March 2025, various lawsuits were brought together, and the company opted to settle while denying any wrongdoing.
Settlement Details and Implications
Under the ter
Tellemica cybersecurity rating report: https://www.rankiteo.com/company/tellemica
"id": "TEL1764669631",
"linkid": "tellemica",
"type": "Breach",
"date": "7/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'customers_affected': 'Tens of millions '
'(current and '
'former)',
'industry': 'Telecom',
'location': 'United States',
'name': 'AT&T',
'size': 'Large (millions of customers)',
'type': 'Telecommunications'}],
'attack_vector': ['Dark Web Data Leak (Historical Dataset)',
'Third-Party Cloud Storage Exploitation'],
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Yes (dark web leak, cloud '
'download)',
'file_types_exposed': None,
'number_of_records_exposed': 'Tens of millions',
'personally_identifiable_information': 'Yes '
'(names, '
'SSNs, '
'addresses, '
'etc.)',
'sensitivity_of_data': 'High (SSNs, passcodes, '
'metadata)',
'type_of_data_compromised': ['Personally '
'Identifiable '
'Information (PII)',
'Metadata '
'(call/text '
'records)']},
'date_detected': ['2024-03-01', '2024-07-01'],
'date_publicly_disclosed': ['2024-03-01', '2024-07-01'],
'description': 'AT&T reached a $177 million (£133.9 million) '
'class-action settlement following two major data '
'breaches in 2024, compromising personal '
'information of tens of millions of current and '
'former customers. The breaches involved a '
'2019-or-earlier dataset leaked on the dark web '
'(including SSNs, passcodes, and billing details) '
'and a 2024 breach of call/text metadata from a '
'third-party cloud platform. Legal actions '
'consolidated in 2025 led to the settlement, with '
'potential individual compensations of ~$7,500 '
'(£5,600).',
'impact': {'brand_reputation_impact': 'Significant (legal '
'actions, settlement)',
'conversion_rate_impact': None,
'customer_complaints': 'Surge (implied by lawsuits)',
'data_compromised': ['Names',
'Addresses',
'Phone Numbers',
'Email Addresses',
'Dates of Birth',
'Billing Account Numbers',
'Passcodes',
'Social Security Numbers '
'(partial)',
'Call/Text Metadata (phone '
'numbers, durations, interaction '
'counts)'],
'downtime': None,
'financial_loss': '$177 million (settlement)',
'identity_theft_risk': 'High (SSNs, passcodes, PII '
'exposed)',
'legal_liabilities': '$177 million settlement',
'operational_impact': None,
'payment_information_risk': 'Moderate (billing '
'account numbers exposed)',
'revenue_loss': None,
'systems_affected': ['Dark Web (historical dataset)',
'Third-Party Cloud Storage '
'Platform']},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': 'Yes '
'(2019-or-earlier '
'dataset)',
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Settled (2025)',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'references': [{'date_accessed': None,
'source': 'AT&T Public Disclosures (2024)',
'url': None},
{'date_accessed': None,
'source': 'Class-Action Settlement Announcement '
'(2025)',
'url': None}],
'regulatory_compliance': {'fines_imposed': '$177 million '
'(settlement)',
'legal_actions': 'Class-action '
'lawsuits '
'(consolidated March '
'2025)',
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Public disclosures '
'(March 2024, July 2024)',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': 'Yes (implied '
'by disclosure '
'and '
'settlement)',
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': None},
'title': 'AT&T Data Breaches Leading to $177 Million '
'Class-Action Settlement',
'type': ['Data Breach',
'Unauthorized Access',
'Third-Party Cloud Compromise']}