Topics
late
AI
Amazon
Image Credits:Jeenah Moon/Bloomberg / Getty Images
Apps
Biotech & Health
Climate
Cloud Computing
Commerce
Crypto
go-ahead
EVs
Fintech
fund-raise
Gadgets
Gaming
Government & Policy
ironware
Layoffs
Media & Entertainment
Meta
Microsoft
seclusion
Robotics
Security
societal
distance
Startups
TikTok
Transportation
Venture
More from TechCrunch
event
Startup Battlefield
StrictlyVC
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
The giant U.S. telco lost the information of around 110 million customers. Here’s what you need to know.
On Friday , AT&T sound out cybercriminals stole the phone records of “ nearly all ” of its customers , a data breach that will force the party to apprize around 110 million people .
AT&T said the stolen data include criminal record like which telephone numbers a certain customer called and texted , the entire count of calls and texts , and call durations for a six - calendar month period between May 1 , 2022 and October 31 , 2022 . AT&T said the stolen data does not admit any contentedness of outcry or texts , nor their clock time or date .
For some of the affected client , the cybercriminals were also able to steal cell website recognition numbers link up to sound shout and text messages , according to AT&T. This intend that — potentially — someone could expend this selective information to picture out the approximate locating of a customer .
“ This can reveal where someone lives , works , spends their free clock time , who they communicate with in secret including personal business , any law-breaking - based communication or typical private / sensitive conversation that need secrecy , ” said Rachel Tobac , a social engineering expert and founder of cybersecurity firm SocialProof Security . “ This is a big deal for anyone affect . ”
AT&T blamed the incident on a late breach at cloud service provider Snowflake , which has affected rafts of companies , includingTicketmaster , Santander BankandLendingTree subsidiary company QuoteWizard . At this point in time , it ’s unclear exactly who was behind the Snowflake breach . Mandiant , the cybersecurity firm hired by Snowflake to inquire , say a financially move cybercriminal group they distinguish as UNC5537was creditworthy .
The character of data stolen in AT&T ’s data rupture is typically referred to as metadata because it does n’t let in the contents of call or text , but only informationaboutthose calls and texts . That , however , does n’t think of there are no risks for the victims of this breach .
Tobac said that this eccentric of data do it easier for cybercriminals to impersonate hoi polloi you commit , get it easy for them to craft more believable social technology or phishing attacks against AT&T customers .
“ The aggressor know on the nose who you ’re likely to pick up a call from , who you ’re likely to text back , how long you communicate with that person , and even potentially where you were locate during that conversation due to the metadata that was stolen , ” said Tobac .
Runa Sandvik , thefounder of Granitt , a business firm that aid journalists and activists be more secure , said that “ even if you do n’t do anything ‘ crucial ’ or ‘ tender , ’ who you tattle to ; when ; and how often is still personal to you and should remain individual to you as well . ”
“ I consider everyone should be very angry about this and demand well from the telcos , it ’s not enough to say ‘ oh by the way of life your data was taken , we are sorry and are adopt this very in earnest ’ , ” Sandvik told TechCrunch .
Sandvik say it ’s more touch for higher - risk individuals touch by the breach . “ Some may moot interchange their numbers and using a unlike provider , but it just really depends on the circumstance . ” high - danger soul can also admit those who have a reason to shield their identity , such as survivors of domestic abuse .
Sandvik also said that using encrypted confabulation apps — like Signal , which does n’t hold the character of metadata AT&T just lost ; and WhatsApp — could be better for security department because these companies have a better track phonograph record of protecting user data .
Jake Williams , a cybersecurity expert and former NSA cyber-terrorist , secernate TechCrunch that the risk is nifty for patronage and intelligence targets following the AT&T breach .
“ Threat actors can expend this information to create pattern of life , ” state Williams . “ Call data records provide a riches of economic value for intelligence psychoanalyst . ”
Williams also enounce that it ’s potential hacker can flux this data with that of datum falling out , because “ previous AT&T incident mapped customer phone numbers to other place information , simplifying weaponization of the newly compromised data . ”
Call and text metadata is traditionally information that can be valuable for intelligence agencies . Some of the document leaked by former NSA declarer Edward Snowden more than a X ago give away thatthe U.S. National Security Agency was obtaining client metadata from Verizonin bulk on an “ ongoing , daily basis . ”
The U.S. government has long defended this praxis as an indispensable putz to fight against terrorism , and for the last decade serial administrationshave been reluctant to give up this capableness . A former intelligence officeholder , who asked to remain anon. because they were not authorized to speak to the press , told TechCrunch that there is “ a understanding telcos are so often targeted by alien service , ” citing endeavour to identify potential tidings beginning and assets .
“ In short , this data point is a atomic number 79 mine for understanding who sing to who , which can for case be used for developing human sources , ” said Williams .
