On July 12, 2024, AT&T announced the records of calls and text messages of almost all AT&T cellular customers were compromised via a third-party cloud platform. According to a statement made by AT&T, the compromised data does not contain the content of the calls and text messages. It also does not contain personally identifiable information such as Social Security numbers, dates of birth or customer names. At this time, AT&T states there is no indication that the compromised data is publicly available.
Although AT&T states that personally identifiable information was not leaked, organizations are still encouraged to be vigilant against mobile threats. Kern Smith, Vice President, Americas, at Zimperium states, “Mobile devices are one of the primary targets for attackers to compromise credentials, through either phishing, malware, network or device exploits attacks and are often overlooked by companies as part of their overall security strategy. It is important that organizations ensure that both they and their vendors have appropriate security tooling in place to prevent credential compromises which can be leveraged downstream for larger attacks and breaches. As part of a comprehensive security strategy, organizations must ensure that both they and their vendor’s mobile devices are protected from these attacks.”
Educational Webinars, Videos & Podcasts: Receive cutting-edge insights and invaluable resources, empowering you to stay ahead in the dynamic world of security.
Empowering Content: At your computer or on-the-go, stay up-to-date when you receive our eNewsletters curated with the latest technology and services that address physical, logical, cyber and enterprise resilience.
Unlimited Article Access: Dive deep into the world of cybersecurity and risk management leadership with unlimited access to our library of online articles.