Telecommunications behemoth AT&T has publicly acknowledged a significant data breach that occurred approximately two years prior. The company has announced measures to enhance security by resetting passcodes for active customers. The data breach exposed sensitive information from approximately 65.4 million past subscribers and 7.6 million new subscribers. However, the response from AT&T is to focus on resetting passcodes for current customers.
AT&T’s delayed response has raised concerns, especially since the initial reports of the breach surfaced back in 2021. The data compromised in the incident included full names, email addresses, physical addresses, phone numbers, social security numbers, dates of birth, AT&T account numbers, and encrypted passcodes.
The company is now proactively contacting its customers impacted by the hack through emails and letters. They are providing details about the breach and the steps being taken to protect user’s information. Despite the encrypted nature of the passcodes—which are usually four digits used for account verification—there remains a risk that encrypted information can be decrypted.
The breach did not only involve passcodes, but also other personal information such as birth dates, physical addresses, and social security numbers. Although AT&T originally denied the claim of a data breach in 2021, they now contrastingly report that there was no information regarding any unauthorized access that led to the data being compromised.
AT&T has dedicated a new webpage to inform customers about this data breach and to guide them on securing their accounts moving forward. Cybersecurity experts, including Troy Hunt, have criticized AT&T’s handling of the situation, suggesting that the delay in acknowledging the breach and notifying customers was a misstep.
Customers affected by the breach are advised to take proactive steps in protecting their accounts, such as monitoring account activity and being vigilant for any signs of identity theft or fraudulent activity.
As more developments surface regarding the data breach, it is crucial for customers to stay informed and safeguard their personal information to prevent misuse. The incident serves as a reminder of the importance of digital security and the potential consequences of delayed responses to data breaches.
In the meantime, anyone with concerns about the security of their AT&T account should reach out to the company’s customer service for assistance and take measures to protect their personal information.
