NOWCAST KOCO 10:30pm-11pm Sunday Night
Watch on Demand
Advertisement

'Nearly all' AT&T cell customers’ call and text records exposed in a massive breach
By Matt Egan and Sean Lyngaas
'Nearly all' AT&T cell customers’ call and text records exposed in a massive breach
This new cyber crime study was done by the tech research site Windows report dot com. They analyzed FBI data and ranked them based on how many cyber crime victims there were for every 100,000 people. Here are the safest spots coming in fifth Iowa in fourth place, Louisiana. Number two, Kansas, but coming in at number one, you are at the lowest risk for *** cyber crime in Mississippi. But on the other end of the spectrum, if you live in Nevada, even if you're just visiting Vegas baby, you could be at the highest risk. One of the best things you can do is to check to see if your email passwords addresses or any of your personal information has been stolen in *** data breach. How do you do that? Great website we found it's called, it's weird. Have I been pod dot com? So it's like have I been own dot com? But the P instead of the O have I been P W N E D dot com, it's gonna tell you which data breach it was stolen in and then you can change your password on that site to keep safe. Hope it helps get back to you.
Advertisement
'Nearly all' AT&T cell customers’ call and text records exposed in a massive breach
By Matt Egan and Sean Lyngaas
The call and text message records of tens of millions of AT&T cellphone customers and many non-AT&T customers in mid-to-late 2022 were exposed in a massive data breach, the telecom company revealed Friday.AT&T said the hacked data did not include the content of calls and text messages. At this point, the exposed data is not believed to be publicly available.AT&T blamed an “illegal download” on a third-party cloud platform that it learned about in April – just as the company was grappling with an unrelated major data leak.AT&T said the compromised data includes the telephone numbers of “nearly all” of its cellular customers and the customers of wireless providers that use its network between May 1, 2022 and October 31, 2022. The stolen logs also contain a record of every number AT&T customers called or texted – including customers of other wireless networks – the number of times they interacted and the call duration.The records of a “very small number” of customers on January 2, 2023 were also implicated, AT&T said. The content of the calls and texts were not exposed, according to the company.AT&T listed approximately 110 million wireless subscribers as of the end of 2022. AT&T said international calls were not included in the stolen data, with the exception of calls to Canada.The breach also included AT&T landline customers who interacted with those cell numbers.AT&T said customer names were not exposed in this incident, however the company acknowledged that publicly available tools can often link names with specific phone numbers.Additionally, AT&T said that for an undisclosed subset of its records, one or more cell site identification numbers linked to the calls and texts were also exposed. Such data could reveal the broad geographic location of one or more of the parties.“At this time, we do not believe that the data is publicly available,” AT&T said in a statement. “We sincerely regret this incident occurred and remain committed to protecting the information in our care.”AT&T promised to notify current and former customers whose information was involved and provide them resources to protect their information.Although the breach exposed phone and text records, AT&T said it does not contain the contents of the calls or texts, nor does it contain personal information such as Social Security numbers, dates of birth or other personally identifiable information.Usage details such as the time of calls and text messages were not compromised either.AT&T said it learned on April 19 that a “threat actor claimed to have unlawfully accessed and copied AT&T call logs.” The company said it “immediately” hired experts and a subsequent investigation determined hackers and exfiltrated files between April 14 and April 25.The company said the US Department of Justice Department determined in May and in June that a delay in public disclosure was warranted. It’s not clear why that the US government requested that data be delayed. CNN has reached out to the Justice Department for comment.AT&T shares fell 2% in premarket trading following the news.AT&T spokesperson Alex Byers told CNN that this new incident has “no connection in any way” to an incident disclosed in March. At that time, AT&T said personal information such as Social Security numbers on 73 million current and former customers was released onto the dark web.In the new incident, AT&T told CNN it learned in April that customer data was illegally downloaded from its workspace on Snowflake, a third-party cloud platform.Brad Jones, chief information security officer at Snowflake, told CNN in a separate statement that the company has not found evidence this activity was “caused by a vulnerability, misconfiguration or breach of Snowflake’s platform.” Jones said this has been verified by investigations by third-party cybersecurity experts at Mandiant and CrowdStroke.AT&T said it launched an investigation, hired cybersecurity experts and took steps to close the “illegal access point.”The company said it’s cooperating with law enforcement’s efforts to apprehend those responsible and understands at least one person has already been arrested.

The call and text message records of tens of millions of AT&T cellphone customers and many non-AT&T customers in mid-to-late 2022 were exposed in a massive data breach, the telecom company revealed Friday.

AT&T said the hacked data did not include the content of calls and text messages. At this point, the exposed data is not believed to be publicly available.

Advertisement

AT&T blamed an “illegal download” on a third-party cloud platform that it learned about in April – just as the company was grappling with an unrelated major data leak.

AT&T said the compromised data includes the telephone numbers of “nearly all” of its cellular customers and the customers of wireless providers that use its network between May 1, 2022 and October 31, 2022. The stolen logs also contain a record of every number AT&T customers called or texted – including customers of other wireless networks – the number of times they interacted and the call duration.

The records of a “very small number” of customers on January 2, 2023 were also implicated, AT&T said. The content of the calls and texts were not exposed, according to the company.

AT&T listed approximately 110 million wireless subscribers as of the end of 2022. AT&T said international calls were not included in the stolen data, with the exception of calls to Canada.

The breach also included AT&T landline customers who interacted with those cell numbers.

AT&T said customer names were not exposed in this incident, however the company acknowledged that publicly available tools can often link names with specific phone numbers.

Additionally, AT&T said that for an undisclosed subset of its records, one or more cell site identification numbers linked to the calls and texts were also exposed. Such data could reveal the broad geographic location of one or more of the parties.

“At this time, we do not believe that the data is publicly available,” AT&T said in a statement. “We sincerely regret this incident occurred and remain committed to protecting the information in our care.”

AT&T promised to notify current and former customers whose information was involved and provide them resources to protect their information.

Although the breach exposed phone and text records, AT&T said it does not contain the contents of the calls or texts, nor does it contain personal information such as Social Security numbers, dates of birth or other personally identifiable information.

Usage details such as the time of calls and text messages were not compromised either.

AT&T said it learned on April 19 that a “threat actor claimed to have unlawfully accessed and copied AT&T call logs.” The company said it “immediately” hired experts and a subsequent investigation determined hackers and exfiltrated files between April 14 and April 25.

The company said the US Department of Justice Department determined in May and in June that a delay in public disclosure was warranted. It’s not clear why that the US government requested that data be delayed. CNN has reached out to the Justice Department for comment.

AT&T shares fell 2% in premarket trading following the news.

AT&T spokesperson Alex Byers told CNN that this new incident has “no connection in any way” to an incident disclosed in March. At that time, AT&T said personal information such as Social Security numbers on 73 million current and former customers was released onto the dark web.

In the new incident, AT&T told CNN it learned in April that customer data was illegally downloaded from its workspace on Snowflake, a third-party cloud platform.

Brad Jones, chief information security officer at Snowflake, told CNN in a separate statement that the company has not found evidence this activity was “caused by a vulnerability, misconfiguration or breach of Snowflake’s platform.” Jones said this has been verified by investigations by third-party cybersecurity experts at Mandiant and CrowdStroke.

AT&T said it launched an investigation, hired cybersecurity experts and took steps to close the “illegal access point.”

The company said it’s cooperating with law enforcement’s efforts to apprehend those responsible and understands at least one person has already been arrested.

Top Picks

Space roundup: All this week's space news in one place
America is pumping so much oil that gas could be below $3 by Thanksgiving
Rossen roundup: Top consumer stories from the past week
Michael Keaton wants to use his birth name: Why it's a challenge