- AT&T SURVEY ON NEW Complaints from a data violation
- The data was published on a violation forum and includes SSN in clear
- It could be new or could be a reissue of older data
AT&T is studying data leak on a cybercrime forum, but with some skepticism, as some have suggested, this could be a reissue of a previous data violation.
Data loss includes 88 million customer files, but 86 million of them are unique, including personal information such as birth dates, telephone numbers, email addresses, physical addresses.
What makes this violation potentially dangerous is that the data is strongly organized and includes 44 million clear social security numbers which could be used to commit fraud and an identity theft.
Just a reissue or something more sinister?
The hackread research team first spotted the files on May 15, the same data collection appearing again on June 3 and spreading to several other flight sites and forums since then.
There is a debate on the origin of the data, with similarities of finds between the encrypted and clear values of the collection which could link it to the AT & T breach which used the vulnerability of snowflakes.
On the other hand, this could be a reissue of a previous violation, or a combination of one of the many AT&T violations.
For example, in 2024, AT&T confirmed that the data of 51 million customers had been stolen after having previously denied that the data had been stolen from the AT&T systems.
The data was initially stolen in 2021. The famous vulnerability of the 2024 snowflakes also saw the data from stolen customers in AT&T, the company merchanting and paying $ 300,000 in Bitcoin to one of the pirates to delete the data.
The main thing is that the data understand almost all that a cyber criminal would need to commit fraud or steal an identity, protecting identity theft and monitoring a good choice for those who are potentially affected by the violation.
Via The register
