July 12, 2024 at 04:02PM
AT&T’s breach of a third-party cloud platform, Snowflake, exposed phone numbers and metadata of calls and texts for nearly all AT&T wireless customers and others. The data was accessed between April 14 and 25, 2023. The stolen information, including cell site identification numbers, poses risks to privacy and security, potentially leading to social engineering attacks and identity theft.
Meeting Summary:
– AT&T was the victim of a major data breach through its Snowflake workspace, impacting nearly all AT&T wireless customers and customers of other popular wireless providers.
– The breach occurred between April 14 and April 25, 2023, and resulted in the exfiltration of records related to customers’ calls and texts during specific periods.
– While personally identifying information (PII) was not compromised in this breach, the stolen data includes phone numbers, call and text details, and cell site identification numbers, posing risks such as targeted social engineering attacks and privacy violations.
– The stolen metadata could be exploited for sophisticated phishing attempts, identity theft, and other nefarious activities for years to come, highlighting the lasting consequences of a data breach.
Let me know if there’s anything else you need assistance with!