Summary
AT&T Inc. has filed an 8-K detailing a cybersecurity incident where a threat actor claimed to have accessed AT&T call logs. The unauthorized access occurred on a third-party cloud platform between April 14 and April 25, 2024, resulting in the exfiltration of files containing records of customer call and text interactions from specific past periods (May 1 to October 31, 2022, and January 2, 2023). Importantly, the compromised data does not include the content of calls or texts, nor sensitive personal information like Social Security numbers or dates of birth. While the data does contain telephone numbers of AT&T wireless customers, MVNO customers using AT&T's network, AT&T wireline customers, and customers of other carriers, along with interaction counts and aggregate call durations, AT&T states it does not believe this incident is reasonably likely to materially impact its financial condition or results of operations as of the filing date. The company has implemented additional cybersecurity measures, is cooperating with law enforcement (which has led to at least one apprehension), and will notify impacted customers.
Key Highlights
- 1Cybersecurity incident involving alleged exfiltration of AT&T customer call and text interaction records.
- 2Data accessed was from specific historical periods: May 1-Oct 31, 2022, and Jan 2, 2023.
- 3Compromised data does NOT contain call/text content, SSNs, dates of birth, or other PII.
- 4Affected data includes phone numbers interacting, interaction counts, and aggregate call durations.
- 5AT&T does not believe the incident will materially impact its financial condition or results.
- 6The company is working with law enforcement, and at least one individual has been apprehended.
- 7AT&T will provide notice to all impacted current and former customers.