Should customers be wary of further data breaches after AT&T hack?

The company said in its SEC filing that the hackers had stolen phone and text message logs from their clientele spanning six months.

TalkingPoint
Data Breach ATT
Photo Credit: Qonversations/Runway

Hackers reportedly acquired almost all of AT&T’s cellular subscriber records on Friday, July 12, 2024. The company said in its SEC filing that the hackers had stolen phone and text message logs from their clientele spanning six months.

According to the SEC filing, which was the outcome of an internal probe, hackers “unlawfully accessed and copied AT&T call logs” that were kept on a third-party cloud platform in April of this year.

Records of calls and messages made by AT&T users between around May 1, 2022, and October 31, 2022, as well as on January 2, 2023, were exposed in the most recent data breach.

The arguments

Similar circumstances with customer data being accessed due to employee login credentials at third-party cloud storage vendor Snowflake were experienced by Ticketmaster and Santander Bank prior to the AT&T breach.

Hackers simultaneously targeted around 160 companies as part of a broader plan that included the attack on Ticketmaster.

In addition to the US Federal Communications Commission conducting its own investigation, AT&T is collaborating with the Justice Department and the FBI to look into the incident.

The most recent data breach raises more questions about data security since, in spite of these precautions, there is still a chance that millions of Americans’ private information could be made public.

Customers are requesting that their service providers improve data security protocols for the time being.

The facts

In response to the hack, tech portal the Wired reported that AT&T paid the hacker around $370,000 to delete customer data that had been stolen from its database during the hacking incident.

The hacker is reported to have provided video evidence to prove that they had indeed deleted the records after receiving the funds.

The negotiation and settlement were facilitated by an intermediary named Reddington, acting on behalf of a member of the ShinyHunters hacking group.

Initially, the hacker had requested $1 million, but AT&T negotiated the amount down, and the payment was made in bitcoin on May 17, 2024. Reddington was also compensated for his role in negotiating the settlement.

Despite the data deletion, concerns linger about potential copies of the data being in the possession of unauthorised individuals.

 

More about:
More from Qonversations

TalkingPoint

Trump and Femi

Are conservatives really happier? New study explores the politics of happiness and psychological richness

TalkingPoint

Global warming red

Is humanity ignoring the warning signs of climate catastrophe?

TalkingPoint

Waymo

Will self-driving cars replace traditional vehicles?

TalkingPoint

Work life balance. red

The Reddit post that sparked a debate on work-life balance

Front of mind
natalie9 scaled

Is there a secret to longevity? This health expert says 1,000% yes

In the era of social media, post-COVID, and with mental health at the forefront, a shift is taking […]

Read more

Related

Screenshot 2024 03 29 at 18.19.08 scaled

5G in Africa: What’s its potential, Selasi Ahorlumegah?

With its fast speeds and revolutionary potential, 5G stands out as a noteworthy milestone in the field of […]

Read more

Related