AT&T claims that they did not put up with a details breach soon after a perfectly-recognized danger actor claimed to be selling a database that contains the particular details of 70 million clients.
The danger actor, regarded as ShinyHunters, commenced selling this database yesterday on a hacking discussion board with a starting up price of $200,000 and incremental provides of $30,000. The hacker states that they are eager to promote it instantly for $1 million.
From the samples shared by the menace actor, the database consists of customers’ names, addresses, cellphone numbers, Social Stability numbers, and day of beginning.
A safety researcher who needs to keep on being anonymous told BleepingComputer that two of the four people in the samples were confirmed to have accounts on att.com.
Other than these couple details, not a lot is regarded about the database, how it was acquired, and whether or not it is reliable.
Having said that, ShinyHunters is a nicely-known threat actor with a prolonged record of compromising websites and developer repositories to steal credentials or API keys. This authentication is then utilized to steal databases, which they then provide instantly to other risk actors or use a middle-gentleman info breach vendor.
In quite a few cases, when a databases is not marketed, ShinyHunters will launch it for no cost on hacker forums.
In the earlier, ShinyHunters has breached numerous firms, which includes Wattpad, Tokopedia, Microsoft’s GitHub account, BigBasket, Nitro PDF, Pixlr, TeeSpring, Promo.com, Mathway, and quite a few far more.
AT&T denies suffering a breach
Following understanding of the danger actor’s claims, BleepingComputer arrived at out to AT&T to see if the knowledge belonged to them.
In various e-mails, AT&T has advised BleepingComputer that the facts is not from their systems and has not lately been breached.
“Primarily based on our investigation currently, the facts that appeared in an world-wide-web chat place does not show up to have occur from our devices.” – AT&T.
When requested irrespective of whether the details may well have appear from a 3rd-occasion associate, AT&T selected not to speculate.
“Specified this details did not arrive from us, we can’t speculate on the place it came from or no matter if it is valid,” AT&T advised us in a follow-up e mail.
ShinyHunters has explained to BleepingComputer that they are not surprised that AT&T denies the breach and carries on to condition that it will come from them.
“I you should not care if they you should not admit. I’m just selling,” ShinyHunters informed BleepingComputer.
Whilst ShinyHunters states that they did not get in touch with AT&T, they mentioned they are prepared to “negotiate” with the business.
When we requested the threat actor for further more details about the breach, ShinyHunters refused to present any other aspects.
This information will come soon soon after a different risk actor attempted to market the stolen data of 100 million T-Cellular shoppers.
T-Cellular most up-to-date confirmed they ended up hacked, and the cyberattack uncovered the personalized details of 48 million T-Cell buyers.