Sign Up
All SecurityCyber-crimePatchesResearchCSO
All Off-PremEdge + IoTChannelPaaS + IaaSSaaS
All On-PremSystemsStorageNetworksHPCPersonal TechCxOPublic Sector
All SoftwareAI + MLApplicationsDatabasesDevOpsOSesVirtualization
All OffbeatDebatesColumnistsScienceGeek's GuideBOFHLegalBootnotesSite NewsAbout Us

Security

Cyber baddies leak 70M+ files online, claim they're from AT&T

Telco reckons data is old, isn't from its systems

Jessica Lyons Mon 18 Mar 2024  //  16:45 UTC

More than 70 million records, allegedly stolen from AT&T in 2021, were dumped on a cybercrime forum at the weekend for miscreants to download.

The stolen records include names, Social Security Numbers, dates of birth, addresses, emails, phone numbers, and other personal information, according to Dark Web Informer, which spotted the massive data dump.

Miscreants reportedly nabbed the personal info back in 2021, and "upon review we can confirm the stolen data is legitimate," industry watchers VX-Underground said.

Back in August 2021, crime gang ShinyHunters claimed to have pilfered private details belonging to 70 million AT&T customers and attempted to sell the database for $1 million, according to digital advocacy group RestorePrivacy.

At the time, AT&T denied the stolen data came from its IT environment, telling RestorePrivacy: "Based on our investigation today, the information that appeared in an internet chat room does not appear to have come from our systems."

The latest claims of a leak emerge about a year after AT&T did admit miscreants accessed about 9 million wireless customers' account information. That breach happened in January 2023, and three months later the carrier confirm that the stolen records included so-called customer proprietary network information.

An AT&T spokesperson at the time said the data was "several years old," and "mostly relating to device upgrade eligibility."

Regarding this latest leak, AT&T told the media it has "no indications of a compromise of our systems. We determined in 2021 that the information offered on this online forum did not appear to have come from our systems.

"We believe and are working to confirm that the data set discussed yesterday is the same dataset that has been recycled several times on this forum." ®
Send us news
1 Comment

Oracle Cloud says it's not true someone broke into its login servers and stole data

Despite evidence to the contrary as alleged pilfered info goes on sale

Names, bank info, and more spills from top sperm bank

Cyber-crime is officially getting out of hand

AI agents swarm Microsoft Security Copilot

Looking to sort through large volumes of security info? Redmond has your backend

Expired Juniper routers find new life – as Chinese spy hubs

Fewer than 10 known victims, but Mandiant suspects others compromised, too

Extortion crew threatened to inform Edward Snowden (?!) if victim didn't pay up

Don't laugh. This kind of warning shows crims are getting desperate

As nation-state hacking becomes 'more in your face,' are supply chains secure?

Ex-US Air Force officer says companies shouldn't wait for govt mandates

That 'angry guest' email from Booking.com? It's a scam, not a 1-star review

Phishers check in, your credentials check out, Microsoft warns

This is the FBI, open up. China's Volt Typhoon is on your network

Power utility GM talks to El Reg about getting that call and what happened next

Medusa ransomware affiliate tried triple extortion scam – up from the usual double demand

Feds warn gang still rampant and now cracked 300+ victims around the world

Allstate Insurance sued for delivering personal info on a platter, in plaintext, to anyone who went looking for it

Crooks built bots to exploit astoundingly bad quotation website and made off with data on thousands

Ex-NSA boss: Election security focus helped dissuade increase in Russian meddling with US

Plus AI in the infosec world, why CISA should know its place, and more

Too many software supply chain defense bibles? Boffins distill advice

How to avoid another SolarWinds, Log4j, and XZ Utils situation