Data Breach
AT&T Data Breach
109.0M records exposed • April 2024
Hackers got records of almost every call and text made by AT&T customers. They didn't get what you said, but they know who you talked to, when, and where you were. This metadata is incredibly revealing—it can expose affairs, identify sources for journalists, locate domestic abuse survivors, and more. The hackers got in through a cloud company AT&T was using.
What Happened
AT&T disclosed that hackers accessed call and text records of nearly all its wireless customers through a breach of Snowflake, a third-party cloud data platform. While the content of calls/texts wasn't exposed, the metadata showing who contacted whom creates significant privacy and safety risks, especially for activists, journalists, and abuse survivors.
Attack method: Third-party cloud platform breach (Snowflake)
What Data Was Exposed
Phone numbers, Call records (who called whom), Text message records, Call durations, Cell site location data
Is your business exposed?
What to Do If You're Affected
- 1.
Review your communication patterns for sensitive contacts
- 2.
If you're at risk (journalist, activist, abuse survivor), assess exposure
- 3.
Consider using encrypted messaging apps (Signal, WhatsApp)
- 4.
Watch for targeted phishing using your contact information
- 5.
Monitor for identity theft using your phone number
- 6.
Set up a SIM swap protection PIN with AT&T
Lessons for Businesses
- • Third-party cloud providers expand attack surface
- • Metadata can be as sensitive as content itself
- • Telecom data requires the strongest protections
- • Supply chain security is critical for sensitive data
Sources
Related Breaches
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required