Monday, May 20, 2024
Home » AT&T changes account passcodes after millions of customer details are leaked online.

AT&T changes account passcodes after millions of customer details are leaked online.

by admin
0 comment

AT&T  has changed millions of user account passcodes after a massive cache of data comprising AT&T customer details was leaked online earlier this month, TechCrunch has learnt exclusively.


The US telecom giant began the password bulk reset after shuttech told AT&T on Monday that the stolen material contained encrypted passcodes that could be used to access AT&T user accounts.

A security researcher who examined the stolen data told shuttech that the encrypted account passwords are simple to decrypt. TechCrunch informed AT&T of the security researcher’s findings.


Empowering connections, inspiring innovation. Together, we build bridges to a brighter future.


AT&T stated on Saturday that it has initiated a thorough investigation backed up by internal and external cybersecurity experts. According to our first investigation, the data set seems to be from 2019 or earlier, affecting roughly 7.6 million current AT&T account users and about 65.4 million past account holders.”

AT&T does not have evidence of unauthorized access to its systems resulting in exfiltration of the data set,” the company stated in a statement.

TechCrunch delayed publishing of this report until AT&T could begin changing customer account passwords. AT&T also has a page about how users may keep their accounts safe.

AT&T customer account passcodes are generally four-digit numbers that are used as an extra layer of protection when accessing a client’s account, such as by contacting AT&T customer care, visiting a retail location, or going online.


This is the first time AT&T has admitted that the disclosed data belonged to its customers, three years after a hacker claimed to have stolen 73 million AT&T user details. AT&T denied a breach of its networks, although the source of the leak remained unknown.

On Saturday, AT&T said that “it is not yet known whether the data in those fields originated from AT&T or one of its vendors.”

In 2021, the hacker claiming the AT&T breach provided just a tiny sample of information, making it impossible to determine whether the material was legitimate. Earlier in March, a data seller posted the whole 73 million suspected AT&T records online on a renowned cybercrime site, allowing for a more in-depth review of the hacked details. AT&T users have subsequently confirmed that the stolen account information is correct.

The stolen information includes AT&T customer names, home addresses, phone numbers, dates of birth, and Social Security numbers.

According to security researcher Sam “Chick3nman” Croley, each record in the disclosed data includes an encrypted version of an AT&T customer’s account password. Croley double-checked his results by cross-referencing entries in the stolen data with AT&T account passcodes known only to him.

You may also like

Leave a Comment is a pioneering technology blog website that has garnered significant attention within the tech community for its insightful content, cutting-edge analysis, and comprehensive coverage of the latest trends and innovations in the technology sector.


Subscribe my Newsletter for new blog posts, tips & new photos. Let's stay updated!

@2024 – All Right Reserved. Designed and Developed by Digital bull technology Pvt.Ltd

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?
Update Required Flash plugin