A danger actor has re-released data affecting 70 million customers from 2021 AT and T Brech, this time individual users mixed with different files to directly link social security numbers and birth dates.
AT&T told Blapping Copper that they were investigating the data, but also believe that it arises from known violations and was converted into a new leak.
AT&T told BlappingCopper, “It is not uncommon to resume data already disclosed for the financial advantage for cyber criminals.
As seen as the first time HackedThe AT & T data was released on a popular Russian-speaking Hacking Forum, where a danger actor claimed that it was stolen during the 2024 AT and T Snoflack data theft attack, which highlighted the call log of 109 million customers.
“Originally one of the database from Snowflake Breach is my backup that I have created, with bogus numbers such as 00000 (I think the federal agent …?) Has been removed and I have also declined to SSN and Dobs,” the forum post said.
Source: Bleepingcomputer
However, the analysis of the leak’s Blapping computers indicates that the data actually originates from the AT & T data breech in 2021, organized by a famous danger actor called Shainhetors, who attempted to sell it in $ 200,000.
Three years later, in March 2024, another danger actor leaked the entire AT and T data on a cybercrime forum for free, stating that it was from the 2021 AT and T Breach of Shineantens.
This data included name, address, mobile phone number, encrypted birth date, encrypted social security number and other internal information. However, there were separate files involved in the leakage who mapped the encrypted SSNs and DOBS with their unnovated plain text strings.
At that time, AT&T first denied that the data was his, but finally confirmed that the data was stolen from their system and affected 73 million customers.
Analysis of current leaks by bleepingcomputer shows that it is the same data leaked in 2024, but has been cleaned to remove internal AT and T data and each customer to add unconstated social security numbers and date of birth in records.
Overall, there are 88,320,017 lines of data in leakage, but when you remove duplicate, it goes up to 86,017,088 unique records.
Further process of data shows that it contains unique phone numbers with 48,896,044 affiliated customer information.
This significant decline is caused by many customers, who have several records with the same phone number, which are used on different addresses.
To repeat, it is not a new AT & T leak or stolen snowflake data, but a re -used version of the 2021 data breech.
Manual patching is old. It is slow, error-prone and hard for scale.
On June 4, join Kandji + Tines, to see why the older methods are short. See the real -world examples of how modern teams use automation to patch rapid patching, risk cuts, obedient stay and leaving complex scripts.
