An AT&T workspace cloud platform offered by third-party vendor Snowflake was ‘unlawfully accessed’
AT&T has revealed in a brand new submitting that in a six-month interval in 2022, it fell prey to a significant hack of buyer knowledge impacting practically all of its subscribers. In a separate press launch, AT&T stated it’s working with the FBI to arrest these concerned within the incident, and that at the least one individual has already been apprehended.
Within the SEC Submitting, the provider acknowledged it discovered in April {that a} “risk actor … unlawfully accessed and copied AT&T name logs” and that following this discovery, it “instantly activated its incident response course of” and is taking “extra cybersecurity measures.”
An investigation uncovered that an AT&T workspace cloud platform offered by third-party vendor Snowflake was “unlawfully accessed.” The platform contained knowledge of its wi-fi prospects and people of MNVOs utilizing its community, in addition to data on landline prospects who interacted with the impacted cellular numbers.
AT&T stated that the breach didn’t expose private data like Social Safety numbers or dates of start, however added, nonetheless, that it did comprise name and textual content interplay knowledge resembling phone numbers, name counts and durations. “Whereas the information doesn’t embody buyer names, there are sometimes methods, utilizing publicly obtainable on-line instruments, to search out the title related to a particular phone quantity,” the cautioned within the submitting.
The breach, which occurred two years in the past, was not disclosed till now as a result of the U.S. Division of Justice had decided that “a delay in public disclosure was warranted.” AT&T stated it doesn’t consider that the information is publicly obtainable at the moment and that the incident had no “materials impression on operations … [or] its monetary situation.”
This previous April, AT&T was hit with one other hack, this one affecting 7.6 million prospects and 65.4 million former account holders. The information set included private data resembling Social Safety numbers, it stated on the time.
Cloud knowledge storage software program firm Snowflake doesn’t have a a lot better observe report — final month, fingers had been pointed on the firm for current assaults on Ticketmaster and Santander Financial institution that uncovered greater than half a billion prospects’ delicate knowledge. Snowflake, nonetheless, is denying duty, even because it admits that an ex-employee account was compromised in a “comparable” approach.