Skip to main content

AT&T resetting account passcodes after data leak impacting 73M current and former users

AT&T is resetting customer account passcodes after acknowledging a 2019 data leak. As reported by TechCrunch, the leak included customer records affecting 70 million current and former AT&T users. This marks the first time that AT&T has “acknowledged that the leaked data belongs to its customers.”

The leaked data includes customer names, home addresses, phone numbers, dates of birth, and social security numbers.

More details here

AT&T’s massive data leak

In addition to that personal information, the leak also includes customer account passcodes. This data is in “an encrypted format,” but “are easy to decipher.” As explained by TechCrunch, AT&T account passcodes “are typically four-digit numbers that are used as an additional layer of security when accessing a customer’s account, such as calling AT&T customer service, in retail stores, and online.”

In a statement provided to TechCrunch, AT&T said that it confirmed the data set includes information on 7.6 million current AT&T users and 65.4 million former account holders. The company also said that it does not have evidence of “unauthorized access to its systems resulting in exfiltration of the data set.”

“AT&T has launched a robust investigation supported by internal and external cybersecurity experts. Based on our preliminary analysis, the data set appears to be from 2019 or earlier, impacting approximately 7.6 million current AT&T account holders and approximately 65.4 million former account holders.

AT&T does not have evidence of unauthorized access to its systems resulting in exfiltration of the data set.”

AT&T has also launched a new webpage on which it confirms the data leak and how customers can keep their accounts secure.

“We’ve taken precautionary measures and reset passcodes, which is an extra layer of protection for AT&T accounts,” the company says on the new webpage.

In addition to resetting the account passcodes of current users affected by the leak, AT&T says it will also communicate with “current and former account holders with compromised sensitive personal information.”

More details are available on AT&T’s website. The company says that it continues to work with “external cybersecurity experts to analyze the situation.”

Follow ChanceThreadsTwitterInstagram, and Mastodon

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel

Comments

Author

Avatar for Chance Miller Chance Miller

Chance is the editor-in-chief of 9to5Mac, overseeing the entire site’s operations. He also hosts the 9to5Mac Daily and 9to5Mac Happy Hour podcasts.

You can send tips, questions, and typos to chance@9to5mac.com.

Manage push notifications

notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications
notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications