Approximately 109 million AT&T customers’ call logs were compromised in a significant data breach. The company’s breached information was stored online in its Snowflake database. Multiple organizations reported subsequent breaches following Snowflake’s initial breach disclosure in late May. This data platform is used by over 9,400 customers, including some of
the largest companies worldwide, such as Okta, AT&T, Capital One, Siemens, US Foods, Western Union, Ticketmaster, and many others.

The stolen data includes records of call and text interactions of nearly all of AT&T’s wireless customers and mobile virtual network operators (MVNO) between May 1 and October 31, 2022, and on January 2, 2023. A subset of records also included one or more cell site identification numbers. While customer names, Social Security numbers, dates of birth, and call and text content were not included in the breached data, the combined user information could be used in Vishing or SMiShing attempts. Users are advised to exercise caution with unsolicited phone calls or text messages. Additionally, exposed information may offer threat actors the capability to facilitate extortion attempts or sell sensitive details.