Data from 70 million AT&T users published on hack forum

An individual using the nickname MajorNelson has posted data from AT&T on a hacking forum, including information about 70 million users. Apparently, this information is related to the alleged leak in 2021, which was already attempted to be sold by the ShinyHunters group. AT&T claims that the data was not taken from the company’s systems and that AT&T was not hacked.

MajorNelson claims that the dump includes names, addresses, mobile phone numbers, encrypted dates of birth, encrypted social security numbers, and other internal information. The attacker stated that they decrypted the dates of birth and social security numbers and added them to a separate file.

In 2021, when a similar dump was being sold by members of the ShinyHunters group, the companies involved stated to Bleeping Computer that their investigation showed the information was not obtained from AT&T systems.

Data from 70 million AT&T users published on hack forum

Back then, ShinyHunters members did not refute AT&T’s statements and simply stated that they didn’t care if the company acknowledged the leak; their main goal was to sell the dump. The hackers attempted to sell the information on RaidForums, with the starting price for the dump set at $200,000 (or $1 million without negotiation).

Now, with these data resurfacing online, AT&T representatives have once again assured journalists that they still see no evidence of a breach in their systems and believe that this data was taken from some other source.

Data from 70 million AT&T users published on hack forum

The publication notes that it is impossible to confirm whether all 70 million lines are authentic, but journalists have already verified that some data in the dump is correct, including social security numbers, addresses, dates of birth, and phone numbers. Similar conclusions were reached by researchers from Dark Web Informer and VX-Underground, noting that this is clearly not the result of scraping.

At the moment, it is unclear exactly where this data came from. However, all indications suggest that it does indeed belong to AT&T customers. Researchers advise anyone who was an AT&T customer before 2021 to consider their data compromised and to remain vigilant, as this information can now be used in targeted attacks, including SMS and email phishing and SIM card swapping attacks.

0 / 5

Your page rank:


Subscribe: YouTube page opens in new windowLinkedin page opens in new windowTelegram page opens in new window

Leave a Reply

Your email address will not be published. Required fields are marked *

Post comment