AT&T Denies Data Breach, Hacker Claims To Be Selling Database

Share post:

AT&T has denied it suffered a data breach after a notorious threat actor claimed to be selling a database containing the personal data of 70 million subscribers.

The threat actors, known as ShinyHunters began selling this database on a hacker forum last weekend with a starting price of $200,000 and incremental offers of $30,000.

Of the samples shared by the hackers, the database contained the names, addresses, telephone numbers, social security numbers and dates of birth of customers.

Apart from that, not much is known about the database and how it was acquired or whether it is authentic.

ShinyHunters is a notorious hacking group with a long history of compromising websites and developer databases to steal login credentials or API keys. This authentication is then used to steal client databases, which they then sell directly to other hackers or through a middle-man data breach seller.

In some cases, if a database is not sold, ShinyHunters will publish it for free on hacker forums.

In a series of emails, AT&T has denied that the data came from its systems and that it was not recently breached.

When asked if the data could come from a third-party provider, AT&T declined to speculate.

ShinyHunters says they have not contacted AT&T, but they are willing to “negotiate” with the wireless carrier.

The news comes shortly after another hacking group tried to sell the stolen data of 100 million T-Mobile customers.

T-Mobile has confirmed that they were hacked, and the cyberattack has brought to light the personal data of about 48 million T-Mobile customers.

For more information, read the original story in BleepingComputer.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Cyber Security Today, Week in Review for Friday, December 1, 2023

This episode features a discussion on ransomware, the latest explanation from Okta of a support hack and a survey of infosec pros whose firms w

Cyber Security Today, Dec. 1, 2023 podcast – More on Booking.com compromises

This episode reports on the sanctioning of the Sinbad crypto mixe

All Okta customer support users had their email addresses copied

Identity and access provider Okta now says the threat actor who accessed its customer help desk system last month got the names and email addresses of all contacts of organizations that use its support system. Originally, the company said that, after an investigation, it determined only one per cent of the contacts from its 18,000

Failure of technology to detect attacks is a prime cause of breaches: Survey

Despite the money being poured into cybersecurity by IT departments, the leading cause of breaches of security controls was the failure of technology to detect an attack, a new survey from Trellix suggests. Forty-two per cent of respondents to the international survey of infosec leaders whose organization had suffered a recent cyber attack said their

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways