AT&T suffered a massive data breach, attackers stole the call logs for approximately 110 million customers, which are almost all of the company’s mobile customers.<\/p>\n\n\n\n
The stolen data was stolen on a database hosted by the company’s Snowflake<\/a>, reported Techcrunch<\/a>\u00a0quoting an AT&T spokesperson.<\/p>\n\n\n\n
“Based on its investigation, AT&T believes that threat actors unlawfully accessed an AT&T workspace on a third-party cloud platform and, between April 14 and April 25, 2024, exfiltrated files containing AT&T records of customer call and text interactions that occurred between approximately May 1 and October 31, 2022, as well as on January 2, 2023, as described below.” reads the Form 8-K filling<\/a>\u00a0with the SEC.<\/em>
Other organizations were impacted by the Snowflaw data breach, a\u00a0joint investigation<\/a>\u00a0by\u00a0SnowFlake<\/a>, Mandiant, and CrowdStrike attributes the supply attack to the financially motivated threat actor UNC5537.<\/p>\n\n\n\n
According to Mandiant, the attackers used stolen customer credentials to target at least 165 organizations, including\u00a0TicketMaster<\/a>, Neiman Marcus<\/a>,\u00a0and\u00a0Ticketek<\/a>.<\/p>\n\n\n\n
Pierluigi Paganini<\/strong><\/a><\/p>\n\n\n\n
Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/a><\/p>\n\n\n\n
(<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking, Snowflake)<\/strong>