AT&T says hackers stole call and text records of ‘nearly all’ customers in 2022

Hackers accessed the call and text message records of “nearly all” of AT&T’s customers between May 1, 2022, and Oct. 31, 2022, the company said Friday.

AT&T said it learned in April the data was illegally downloaded from the company’s workspace on a third-party cloud platform.

The compromised data includes files containing call and text records of nearly all of AT&T’s cellular customers, wireless network customers, and landline customers over the six-month period in 2022, as well as records from Jan. 2, 2023, for a small number of customers, the company said.

The records identify the telephone numbers an AT&T cellular number interacted with during those time periods. They do not contain the content of calls or texts, personally identifiable information such as Social Security numbers or dates of birth, or the timestamps of calls and texts.

The company warned that although the data does not include the names of customers, there are ways to find the name linked to a telephone number using publicly available online tools.

“At this time, we do not believe that the data is publicly available,” it added.

AT&T said it launched an investigation and is working with law enforcement to arrest those involved in the incident.

“We understand that at least one person has been apprehended,” AT&T said.

CLICK HERE TO READ MORE FROM THE WASHINGTON EXAMINER

The company said in an SEC filing that it has taken additional cybersecurity measures in response to the data breach, including closing off the illegal access point. It will provide notice to its current and former affected customers.

“As of the date of this filing, this incident has not had a material impact on AT&T’s operations, and AT&T does not believe that this incident is reasonably likely to materially impact AT&T’s financial condition or results of operations,” the company said.