\n<\/p>\n
AT&T<\/a> says 7.6 million current customers were affected by a recent leak in which sensitive data was released on the dark web, along with 65.4 million former account holders. TechCrunch<\/em><\/a> first reported on Saturday morning that the company has reset the passcodes of all affected active accounts, and AT&T confirmed the move in an update published on its support<\/a> page. The data set, which AT&T says \u201cappears to be from 2019 or earlier,\u201d includes names, home addresses, phone numbers, dates of birth and Social Security numbers, according to TechCrunch<\/em>.<\/p>\n TechCrunch<\/em> reports that it alerted AT&T about the potential for the leaked data to be used to access customers accounts on Monday, after a security researcher discovered that the records included easily decipherable encrypted passcodes. AT&T said today that it\u2019s \u201claunched a robust investigation supported by internal and external cybersecurity experts.\u201d The data appeared on the dark web about two weeks ago, according to AT&T.<\/p>\n It comes three years after a hacker known as ShinyHunters claimed in 2021 that they\u2019d obtained the account data of 73 million AT&T customers. AT&T at the time told BleepingComputer<\/em><\/a> that it had not suffered a breach and that samples of information shared by the hacker online did \u201cnot appear to have come from our systems.\u201d The company now says that \u201cit is not yet known whether the data in those fields originated from AT&T or one of its vendors.\u201d So far, it \u201cdoes not have evidence of unauthorized access to its systems resulting in exfiltration of the data set.\u201d<\/p>\n AT&T says it will reach out to both current and former account holders who have been affected by the leak. The company also says it will offer credit monitoring to those customers \u201cwhere applicable.\u201d<\/p>\n This article contains affiliate links; if you click such a link and make a purchase, we may earn a commission.<\/p>\n<\/div>\n