Security News > 2023 > March > AT&T alerts 9 million customers of data breach after vendor hack

AT&T is notifying roughly 9 million customers that some of their information was exposed after a marketing vendor was hacked in January.
"The information did not contain credit card information, Social Security Number, account passwords or other sensitive personal information. We are notifying affected customers."
While the data breach notification does not share the number of impacted customers, AT&T told BleepingComputer that "Approximately 9 million wireless accounts had their Customer Proprietary Network Information accessed."
"Our report to law enforcement does not contain specific information about your account, only that the unauthorized access occurred.?". Customers are advised to toggle off CPNI data sharing on their accounts by making a CPNI Restriction Request to reduce exposure risks in the future if AT&T uses it for third-party vendor marketing purposes.
An AT&T spokesperson is yet to reply to an email asking for more info on what specific information was exposed in the incident and what vendor was breached for this data to be exposed.
In August 2021, AT&T denied a data breach after a notorious threat actor put up for sale a database containing what he claimed to be the personal information of 70 million AT&T customers.
News URL
Related news
- HPE notifies employees of data breach after Russian Office 365 hack (source)
- Fintech giant Finastra notifies victims of October data breach (source)
- US drug testing firm says data breach impacted 3.3 million people (source)
- US drug testing firm DISA says data breach impacts 3.3 million people (source)
- Background check, drug testing provider DISA suffers data breach (source)
- Data breach at Japanese telecom giant NTT hits 18,000 companies (source)
- PowerSchool previously hacked in August, months before data breach (source)
- Western Alliance Bank notifies 21,899 customers of data breach (source)
- Sperm donation giant California Cryobank warns of a data breach (source)
- Pennsylvania education union data breach hit 500,000 people (source)