In a series of shocking revelations, telecommunications giant AT&T announced that hackers had gained unauthorized access to sensitive customer data on its cloud platform, Snowflake. The breach, which occurred between May 1, 2022 and October 31, 2022, affected nearly all of AT&T's wireless customers and some customers of other carriers. The stolen data included records of calls and texts made during this period.
According to reports from Mandiant, a cybersecurity firm that investigated the breach, the hack was carried out by a financially motivated group called UNC5537. Members of this group were identified in North America and Turkey.
The stolen data did not contain the content of calls or texts but included phone numbers, aggregate call duration, and some cell site details. Hackers could potentially use this information to impersonate friends or relatives, gain access to financial information, or locate U.S. government workers.
AT&T stated that it had taken additional cybersecurity measures in response to the breach and was working with law enforcement agencies, including the FBI and the Department of Justice, in their efforts to apprehend those involved.
The incident marked one of the most serious breaches of sensitive consumer data in recent years. The Federal Communications Commission (FCC) and Securities and Exchange Commission (SEC) were also notified about the breach.
Despite these measures, concerns remain about the potential impact of this breach on consumers' privacy and security. It is essential for individuals to be vigilant against potential phishing scams or other attempts to exploit their personal information.