The AT&T Breach - What To Do

On the AT&T Breach

AT&T confirmed Friday that it will notify millions of consumers about a significant data breach that allowed cybercriminals to steal the phone records of "nearly all" its customers.

According to AT&T's 8-K filing with the SEC, the stolen data includes phone numbers of both cellular and landline customers and records of calls and text messages during a six-month period between May 1, 2022, October 31, 2022, and January 2023.

✓ No call or text content was stolen. The data taken was who AT&T users called, when, where, for how long, and at what times.

Below are some important details of today's AT&T data breach incident and suggested precautionary steps for our clients.

Incident Summary:

• Date of Disclosure: July 12, 2024

• Affected Customers: Approximately 110 million AT&T customers

• Data Compromised:

•Phone call and text message records (metadata, not content)

•Location data of cellular towers used

• Breach Details:

•Exposed in a cloud database with weak security (username and password only)  - (no MFA!)

•Data stolen includes records from May 1 to October 31, 2022, and January 2, 2023

•No Social Security numbers, dates of birth, or other personally identifiable information were compromised

*** Please pay special attention to the red text I added above.

Some Key Points:

• AT&T delayed disclosing the breach due to national security and public safety concerns.

• The FBI was involved in investigating the breach and requested the delay.

• The breach is part of a more significant issue with the cloud data provider, Snowflake.

The AT&T incident once again demonstrates that we can only rely on large corporations to safeguard our data if they pay attention to fundamental security measures.

✓ It is crucial to use two-factor authentication (2FA) and multi-factor authentication (MFA) diligently for all accounts that offer these features, especially for email, social media, banking, and investment accounts.

✓  It's wise to assume that your information has been, and will continue to be, stolen from third parties like AT&T.  As individuals, we must take proactive steps to protect ourselves from potential harm and inconvenience.  In an age where AI is mining stolen data to plan and optimize attacks, staying vigilant and securing your personal information is more important than ever.

Recommended Precautionary Steps:

1. Monitor Your Accounts:

• Regularly check your bank and credit card statements for any unusual activity.

• Use credit monitoring services to track any suspicious changes.

2. Change Passwords:

• Update passwords for all accounts, particularly those linked to your phone number.

• Use strong, unique passwords for each account.

3. Enable Multi-Factor Authentication (MFA):

• Activate MFA on all accounts that support it to add an extra layer of security.

4. Be Vigilant Against Phishing:

• Avoid unsolicited calls, emails, or texts asking for personal information.

• Verify the authenticity of any communication by contacting the company directly.

5. Stay Informed:

• Follow updates from AT&T and security news outlets to stay informed about the breach and any further recommended actions. 

> Here is AT&T's website concerning this matter: https://www.att.com/support/article/my-account/000102979

> And AT&T's SEC 8k filing is here:

https://www.sec.gov/ix?doc=/Archives/edgar/data/0000732717/000073271724000046/t-20240506.htm

✓ Finally, for our clients, if you would like a review of your products and services from TDS, please reply to this email. We are here to ensure all is buttoned up and safe.

And just one more thing, we have strategic partners that assist our clients with:

• Data removal services
• Stolen information monitoring
• ID theft avoidance and management
• Physical security for people, homes, and events

We understand the concern this incident may cause and are here to support you. If you have any questions or need further assistance, please do not hesitate to contact us.

Stay safe,

Brad Deflin

Total Digital Security