In a significant data security incident, AT&T has confirmed a breach exposing millions of call and text message records. The breach, discovered in 2024, involved unauthorized access to AT&T’s call logs stored on a third-party cloud platform. Hackers reportedly accessed records spanning from May to October 2022, and also in January 2023.
While AT&T assured customers that personal details like Social Security numbers were not compromised, the stolen data includes sensitive metadata such as phone numbers, call durations, and the frequency of interactions. Although the content of calls and messages was not accessed, the breach raises concerns about potential misuse of the exposed information.
AT&T has initiated an investigation with law enforcement agencies and taken steps to mitigate further risks. Customers affected by the breach will be notified directly. It’s advised to remain vigilant against phishing attempts and consider enhancing account security measures like enabling two-factor authentication (2FA).
This incident underscores the ongoing cybersecurity challenges faced by telecommunications companies and highlights the importance of robust data protection measures in safeguarding customer information.
