An AT&T workspace cloud platform supplied by third-party vendor Snowflake was ‘unlawfully accessed’
AT&T has revealed in a brand new submitting that in a six-month interval in 2022, it fell prey to a serious hack of buyer information impacting almost all of its subscribers. In a separate press launch, AT&T stated it’s working with the FBI to arrest these concerned within the incident, and that not less than one individual has already been apprehended.
Within the SEC Submitting, the provider said it discovered in April {that a} “menace actor … unlawfully accessed and copied AT&T name logs” and that following this discovery, it “instantly activated its incident response course of” and is taking “further cybersecurity measures.”
An investigation uncovered that an AT&T workspace cloud platform supplied by third-party vendor Snowflake was “unlawfully accessed.” The platform contained information of its wi-fi prospects and people of MNVOs utilizing its community, in addition to data on landline prospects who interacted with the impacted cell numbers.
AT&T stated that the breach didn’t expose private data like Social Safety numbers or dates of delivery, however added, nevertheless, that it did include name and textual content interplay information resembling phone numbers, name counts and durations. “Whereas the information doesn’t embrace buyer names, there are sometimes methods, utilizing publicly out there on-line instruments, to seek out the title related to a selected phone quantity,” the cautioned within the submitting.
The breach, which occurred two years in the past, was not disclosed till now as a result of the U.S. Division of Justice had decided that “a delay in public disclosure was warranted.” AT&T stated it doesn’t consider that the information is publicly out there right now and that the incident had no “materials impression on operations … [or] its monetary situation.”
This previous April, AT&T was hit with one other hack, this one affecting 7.6 million prospects and 65.4 million former account holders. The info set included private data resembling Social Safety numbers, it stated on the time.
Cloud information storage software program firm Snowflake doesn’t have a significantly better observe report — final month, fingers had been pointed on the firm for current assaults on Ticketmaster and Santander Financial institution that uncovered greater than half a billion prospects’ delicate information. Snowflake, nevertheless, is denying accountability, even because it admits that an ex-employee account was compromised in a “related” manner.
