An AT&T workspace cloud platform offered by third-party vendor Snowflake was ‘unlawfully accessed’
AT&T has revealed in a brand new submitting that in a six-month interval in 2022, it fell prey to a significant hack of buyer information impacting almost all of its subscribers. In a separate press launch, AT&T mentioned it’s working with the FBI to arrest these concerned within the incident, and that at the least one individual has already been apprehended.
Within the SEC Submitting, the service said it discovered in April {that a} “risk actor … unlawfully accessed and copied AT&T name logs” and that following this discovery, it “instantly activated its incident response course of” and is taking “extra cybersecurity measures.”
An investigation uncovered that an AT&T workspace cloud platform offered by third-party vendor Snowflake was “unlawfully accessed.” The platform contained information of its wi-fi clients and people of MNVOs utilizing its community, in addition to data on landline clients who interacted with the impacted cell numbers.
AT&T mentioned that the breach didn’t expose private data like Social Safety numbers or dates of beginning, however added, nevertheless, that it did comprise name and textual content interplay information equivalent to phone numbers, name counts and durations. “Whereas the info doesn’t embrace buyer names, there are sometimes methods, utilizing publicly accessible on-line instruments, to seek out the title related to a selected phone quantity,” the cautioned within the submitting.
The breach, which occurred two years in the past, was not disclosed till now as a result of the U.S. Division of Justice had decided that “a delay in public disclosure was warranted.” AT&T mentioned it doesn’t imagine that the info is publicly accessible presently and that the incident had no “materials affect on operations … [or] its monetary situation.”
This previous April, AT&T was hit with one other hack, this one affecting 7.6 million clients and 65.4 million former account holders. The info set included private data equivalent to Social Safety numbers, it mentioned on the time.
Cloud information storage software program firm Snowflake doesn’t have a a lot better observe file — final month, fingers have been pointed on the firm for current assaults on Ticketmaster and Santander Financial institution that uncovered greater than half a billion clients’ delicate information. Snowflake, nevertheless, is denying accountability, even because it admits that an ex-employee account was compromised in a “related” method.