Last week, AT&T faced a significant hacking operation that resulted in the theft of customer records from users on its network. While over 100 million customers’ phone records were exposed, sensitive information like names, call or text contents, and Social Security numbers remained secure.
However, despite this reassurance, the incident still raises concerns as it is relatively easy to trace phone numbers back to individuals, potentially compromising private connections and revealing locations. The breach involved a third-party cloud service provider called Snowflake, whose servers were compromised, leading to the exposure of calls and phone numbers stored by AT&T.
US senators Richard Blumenthal (D-Conn.) and Josh Hawley (R-Mo.) are seeking answers from AT&T regarding why it retained vast amounts of call and text message records on Snowflake. They questioned AT&T’s CEO about the company’s policies concerning data retention and usage.
AT&T has not disclosed specifics about how it uses Snowflake, but according to the platform’s website, it helps businesses collaborate and share data effectively. Andy Markus, AT&T’s Chief Data Officer, praised Snowflake for enabling better data integration and insights that enhance customer experiences and operational efficiency.
In response to the senators’ inquiries, AT&T stated that it utilizes trusted cloud services like Snowflake for handling large volumes of data necessary for network planning and service development. The company emphasized that data retention periods vary based on information type, business needs, and legal obligations.
The breach could have been avoided as cybersecurity firm Mandiant revealed that hackers obtained passwords through malware infections linked to pirated software. The compromised accounts lacked basic security measures like updated passwords, firewall access, and multifactor authentication.
Senators are demanding an explanation from AT&T on how hackers accessed the Snowflake workspace and the impact of the stolen data on customer privacy. AT&T has taken steps to address the breach by closing access points used by hackers and notifying affected customers. Investigations by the FBI and FCC are ongoing.
Overall, this incident highlights the importance of robust cybersecurity measures within telecommunications companies like AT&T to safeguard customer data effectively. Stay tuned for further updates on this developing story.
