Thread regarding AT&T layoffs

Nearly all AT&T cell customers’ call and text records exposed in a massive breach

CNN

The call and text message records of tens of millions of AT&T cellphone customers in mid-to-late 2022 were exposed in a massive data breach, the telecom company revealed Friday.

AT&T blamed an “illegal download” on a third-party cloud platform that it learned about in April – just as the company was grappling with an unrelated major data leak.

AT&T said the compromised data includes the telephone numbers of “nearly all” of its cellular customers and the customers of wireless providers that use its network between May 1, 2022 and October 31, 2022. The stolen logs also contain a record of every number AT&T customers called or texted – including customers of other wireless networks – the number of times they interacted and the call duration.

The records of a “very small number” of customers on January 2, 2023 were also implicated, AT&T said. The content of the calls and texts were not exposed, according to the company.

AT&T listed approximately 110 million wireless subscribers as of the end of 2022.

The breach also included AT&T landline customers who interacted with those cell numbers.

AT&T said customer names were not exposed in this incident, however the company acknowledged that publicly available tools can often link names with specific phone numbers.

Additionally, AT&T said that for an undisclosed subset of its records, one or more cell site identification numbers linked to the calls and texts were also exposed. Such data could reveal the broad geographic location of one or more of the parties.

“At this time, we do not believe that the data is publicly available,” AT&T said in a statement. “We sincerely regret this incident occurred and remain committed to protecting the information in our care.”

AT&T promised to notify current and former customers whose information was involved and provide them resources to protect their information.

Although the breach exposed phone and text records, AT&T said it does not contain the contents of the calls or texts, nor does it contain personal information such as Social Security numbers, dates of birth or other personally identifiable information.

Usage details such as the time of calls and text messages were not compromised either.

AT&T said it learned on April 19 that a “threat actor claimed to have unlawfully accessed and copied AT&T call logs.” The company said it “immediately” hired experts and a subsequent investigation determined hackers and exfiltrated files between April 14 and April 25.

The company said the US Department of Justice Department determined in May and in June that a delay in public disclosure was warranted. It’s not clear why that the US government requested that data be delayed. CNN has reached out to the Justice Department for comment.

AT&T spokesperson Alex Byers told CNN that this new incident has “no connection in any way” to an incident disclosed in March. At that time, AT&T said personal information such as Social Security numbers on 73 million current and former customers was released onto the dark web.

In the new incident, AT&T told CNN it learned in April that customer data was illegally downloaded from its workspace on Snowflake, a third-party cloud platform. CNN reached out to Snowflake for comment.

AT&T said it launched an investigation, hired cybersecurity experts and took steps to close the “illegal access point.”

The company said it’s cooperating with law enforcement’s efforts to apprehend those responsible and understands at least one person has already been arrested

https://www.cnn.com/2024/07/12/business/att-customers-massive-breach/index.html

by
| 1799 views | | 40 replies (last ) | Reply
Post ID: @OP+1tt4C4Op

40 replies (most recent on top)

This is what happens when more importance is placed on uploading wifimaps instead of the things that matter.

by
| | Reply
Post ID: @1yit+1tt4C4Op

The guy in charge of securing the customer tables was busy doing a ride-along with a service tech to foster collaboration and culture. Totally worth it.

by
| | Reply
Post ID: @els+1tt4C4Op

This would not have happened if you just lived your designation. Customer data is only safe in Dallas.

by
| | Reply
Post ID: @tjc+1tt4C4Op

Nope. RTO forward

by
| | Reply
Post ID: @uyi+1tt4C4Op

Cancel RTO and watch these shitstorms end. Employee morale matters.

by
| | Reply
Post ID: @ubf+1tt4C4Op

Interesting that AT&T is blaming a third party cloud provider for the breach. Interesting because Call Detail Records were never stored in said cloud provider's systems. (I believe they are referring to Azure). AT&T alone is responsible for this mess. The bad actor may have gained access to an AT&T workspace through a third party platform, but protection of that data lies with AT&T and was handled by AT&T systems. Part of the issue here is lack of accountability.

by
| | Reply
Post ID: @dmq+1tt4C4Op

Stankey company memo at 5 about culture.

by
| | Reply
Post ID: @hid+1tt4C4Op

What is snowflake?

by
| | Reply
Post ID: @qav+1tt4C4Op

Andy Markus and Jeremy Legg are right in the driver seat on this. They need to go

by
| | Reply
Post ID: @nqw+1tt4C4Op

These breaches are not a surprise to me when you let people over seas maintain passwords in AT&T data centers and who knows where else. The people over seas are making pennies on the dollars compared to US employees and all it takes is someone getting offered a big pay day for giving up passwords/access. I'm not saying that was the case this time but it will eventually bite the company for hiring cheap labor.

by
| | Reply
Post ID: @vgh+1tt4C4Op

Fire Legg!

by
| | Reply
Post ID: @sky+1tt4C4Op

"This is what happens when you put Prabu in charge just to save money."

Prabu is doing the needful. He has closed the rogue port. Is there anything else he can help you with?

by
| | Reply
Post ID: @bxi+1tt4C4Op

The lies and deceptions originating in AT&T are laughable at this point. Customers and investors deserve whatever negative experiences are coming their way if they have not learned by now. I cringe at the number of people using auto pay, and those without freezes on their accounts with the big three credit bureaus.

by
| | Reply
Post ID: @wec+1tt4C4Op

“Meanwhile let’s continue to layoff experienced compliance, security and IT professionals.”
This wasn’t an issue here. Most T employees in CSO or cyber don’t have needed skills or competence to handle intrusion attacks.

by
| | Reply
Post ID: @ykm+1tt4C4Op

would that include mouse jiggling records?

by
| | Reply
Post ID: @iug+1tt4C4Op

Hacker was probably looking for the “culture survey” results or the Stankey ageism town hall.

It’s obvious now the company has underestimated the power and capabilities of its disgruntled employees.

There is an obvious correlation between all of AT&T’s issues and the company morale.

Was it worth it?

by
| | Reply
Post ID: @zmd+1tt4C4Op

Someone needs to stop these id-iots from destroying this company.

Where is the board of directors? This is absurd. Zero accountability!

I have personally said on this site that ATT’s reliance on 3rd party vendors will lead to further data leaks and outages and it didn’t take long did it?

Do you know how much of our network is in the hands of 3rd party providers? Entire central offices being managed by other companies, entire data centers being managed by other companies. Our 911 services managed by vendors. Do you know what happens when these things fail?

We’re talking about national losses of services.

by
| | Reply
Post ID: @ypl+1tt4C4Op

"I thought that AT&T employed such experts already."

They didn't want to move to that sh1+hole state Texas, so they got laid off.

by
| | Reply
Post ID: @gcq+1tt4C4Op

Saw her at Spearmint Rhino last night.

by
| | Reply
Post ID: @iqr+1tt4C4Op

" AT&T said it launched an investigation, hired cybersecurity experts and took steps to close the “illegal access point.” "

I thought that AT&T employed such experts already. No we have a "yes" man culture and a tech company run by MBAs with no knowledge of such.

by
| | Reply
Post ID: @ven+1tt4C4Op

Could you f4ck nuts hold off on doing incompetent sh1t until I start my new job? chain Andy Markus and Legg to a desk or something. in the office next to 700lb Carol and her skid marked chair

by
| | Reply
Post ID: @dgx+1tt4C4Op

Legg: "who is responsible for this under me?"
Johnson: "Its Mike sir. You laid him off last month. He monitored intrusions"
Legg: "pack your bags Johnson, you're being surplused"
Legg to Stank: "problem solved sir. back to the Town Hall planning. This time, I want to be roofied after visiting the grocery store. Then I'll get lost again finding my own Town Hall"

by
| | Reply
Post ID: @wlv+1tt4C4Op

Meanwhile let’s continue to layoff experienced compliance, security and IT professionals.

by
| | Reply
Post ID: @hti+1tt4C4Op

Will this impact bonuses next year?

Yes, it will impact your bonus, but NOT Stankey’s or Legg’s bonuses.

by
| | Reply
Post ID: @yll+1tt4C4Op

"Legg saying he already talked to some customers and ‘they were relieved it wasn’t worse’."

lmao. Legg will put this in Workday as an achievement. When is the Legg experiment going to end? He's in over his head

by
| | Reply
Post ID: @fso+1tt4C4Op

Big meeting at 8am today, being repeated at 11am EDT to try to downplay it and tell Sales how to spin it to customers. Legg saying he already talked to some customers and ‘they were relieved it wasn’t worse’.

by
| | Reply
Post ID: @fzi+1tt4C4Op

Will this impact bonuses next year?

by
| | Reply
Post ID: @kuu+1tt4C4Op

What a mess, I'm sure the board sees this as a sign that we're not investing enough in c-suite salaries.

I'd say someone should try to hack out the survey results, but they're probably secured better than our customer's data.

by
| | Reply
Post ID: @cjy+1tt4C4Op

Can T’s reputation sink any lower?

by
| | Reply
Post ID: @qeb+1tt4C4Op

Stankey, Legg, Summers and Chewning need to be walked out in handcuffs

by
| | Reply
Post ID: @rxi+1tt4C4Op

Hope it will make T stock to skyrocket.

by
| | Reply
Post ID: @psd+1tt4C4Op

This is great news for the stock price and our reputation.

by
| | Reply
Post ID: @flf+1tt4C4Op

let's "modernize" and put everything in the cloud for everybody to steal it

by
| | Reply
Post ID: @ssi+1tt4C4Op

There need to be widespread terminations in the security department resulting from this.

by
| | Reply
Post ID: @gmm+1tt4C4Op

The DOJ wanted it delayed as all deep state, politicians, reporters call logs will be exposed. Who called and texted who.

This one may not quietly go away.

by
| | Reply
Post ID: @sgr+1tt4C4Op

So basically AT&T has now leaked my Identity and all my conversations. Hackers chomping at the bit to put the two leaks together so they can not only scam us, but also can blackmail us from the private conversations. Smh

by
| | Reply
Post ID: @oig+1tt4C4Op

More layoffs coming sooner than expected lol

by
| | Reply
Post ID: @csl+1tt4C4Op

Is anyone surprised by this?

by
| | Reply
Post ID: @usw+1tt4C4Op

A C-Suite needs to be fired. Starting with Legg. This pushes me over to move to other carrier and internet.

How is that cybersecurity product going. lol. I would never buy it. Att can’t even protect its own data.

by
| | Reply
Post ID: @dvp+1tt4C4Op

AT&T's data is about as secure as the southern U.S. border.

by
| | Reply
Post ID: @vvj+1tt4C4Op

Post a reply

: