AT&T 2024 Data Breach: Call and Text Records of Nearly All Customers
Attackers accessed six months of call and text metadata for nearly all AT&T customers through compromised Snowflake cloud credentials.
Unlock Full Privacy Intelligence
Get deep-dive reports on every company that touches your data. SeekerPro members see breach timelines, DSAR success rate...
Learn MoreAudit Your Site Free
Run a full privacy and compliance audit on any website in 60 seconds. NexusBro scans cookie consent, tracker behavior, a...
Learn MoreAutomate Privacy Compliance
Stop wasting hours on manual DSAR filings and cookie consent management. BliniBot handles the busywork so your team can ...
Learn MoreData Types Exposed
Response Timeline
April 2024: AT&T learns of unauthorized access
May 2024: AT&T paid alleged $370,000 ransom
July 12 2024: Public disclosure via SEC filing
Detailed Analysis
The AT&T breach was part of a broader wave of attacks targeting Snowflake cloud platform customers. While message content was not exposed, the metadata reveals intimate details about relationships, movements, and daily patterns. AT&T reportedly paid $370,000 in Bitcoin to have the stolen data deleted.
The breach at AT&T exposed Nearly all AT&T customers (~110 million) records through unauthorized access to at&t data on snowflake cloud platform using stolen credentials. Nearly all AT&T cellular customers and MVNO customers (~110 million people) The incident highlights the ongoing challenges organizations face in protecting sensitive user data against increasingly sophisticated attack vectors. Security researchers have noted that breaches of this magnitude often result from a combination of technical vulnerabilities and organizational failures in security practices.
Current status: FBI investigation ongoing; linked to broader Snowflake customer breaches. Affected users should take immediate steps to protect their accounts, including changing passwords, enabling multi-factor authentication, and monitoring financial accounts for unauthorized activity. Filing a DSAR with AT&T can help you understand what data was exposed and request its deletion.
What To Do If Affected
- Change your password immediately on this service and any accounts using the same password
- Enable two-factor authentication on all critical accounts
- Monitor your credit reports for unauthorized activity
- Consider placing a credit freeze with major bureaus
- File a complaint with your local data protection authority
Protect Your Data Across Every Platform
Tools trusted by thousands of privacy-conscious users worldwide
No card charged today. Cancel anytime.
Frequently Asked Questions
How many records were affected in the AT&T breach?
The AT&T data breach affected Nearly all AT&T customers (~110 million) records. Data types exposed include: phone numbers called and texted, call duration, cell site identification numbers, call and text metadata.
What should I do if I was affected by the AT&T breach?
If you were affected, change your passwords immediately, enable two-factor authentication, monitor your credit reports, and consider placing a credit freeze. You can also submit a DSAR to AT&T requesting deletion of your data.
Is there compensation for AT&T breach victims?
FBI investigation ongoing; linked to broader Snowflake customer breaches Check if a class action settlement exists and whether you are eligible to file a claim.