Skip to content

How do you know if you've been affected by the AT&T data breach and what to do next?

    Call and text message records of nearly all of AT&T's mobile customers have been exposed in a data breach, the company said Friday.

    The company said in a filing with the U.S. Securities and Exchange Commission that it learned in April that customer data had been illegally downloaded from an AT&T workplace to a third-party cloud platform.

    The company says it is working with police to arrest those involved in the incident and that at least one person has been arrested.

    “We are currently investigating the breach at AT&T and are working with our law enforcement partners,” the Federal Communications Commission said on social media Friday morning.

    Here's what else you need to know about the massive data breach, whether you've been affected, and what you can do if you're concerned about potential exposure of sensitive information.

    Who was affected by the AT&T data breach?

    In the SEC document, AT&T says the cybercriminals exfiltrated files containing data about phone calls and text messages interactions with customers that took place between approximately May 1 and Oct. 31, 2022. The company says the compromised data also included data from Jan. 2, 2023, for a “very small number of customers.”

    In addition to mobile customers, customers of mobile virtual network operators (MVNOs) using AT&T's wireless network and AT&T fixed-line customers communicating with these mobile numbers were also affected.

    What type of data is exposed?

    AT&T said in a press release Friday that “the data does not include the content of calls or text messages, nor does it include personal information such as Social Security numbers, dates of birth or other personally identifiable information.”

    “In addition, some typical data you see in your usage data, such as the time stamp of calls or text messages, is missing,” the company said.

    AT&T also said the compromised data did not include customer names, but that there are often ways to find out the name associated with a specific phone number through publicly available online tools.

    “At this time, we do not believe the data is publicly available,” the company said in the press release.

    Call and text message records of nearly all of AT&T's mobile customers have been exposed in a data breach, the company said Friday.Call and text message records of nearly all of AT&T's mobile customers have been exposed in a data breach, the company said Friday.

    Call and text message records of nearly all of AT&T's mobile customers have been exposed in a data breach, the company said Friday.

    AT&T Data Breach: AT&T says nearly all of its mobile customers' call and text messages have been exposed in a massive data breach

    What should AT&T customers do?

    AT&T said customers should generally be cautious of any phone call or text message requesting personal, account or credit card information. If you suspect that:

    • Suspicious text activity: Do not respond. Forward the text to AT&T so they can help you. Forwarded messages are free and do not count against your text plan.

    • You are the target of fraud on your AT&T mobile number: Report it to AT&T's fraud team. If you suspect fraud on another account, call the customer service number on your account for assistance.

    AT&T also says that customers should only open text messages from people they know and trust. They should not respond to a text message from an unknown sender with personal information.

    What to do if your citizen service number has been exposed

    AT&T says no Social Security numbers were exposed in the breach. However, customers concerned about possible exposure can follow the Federal Trade Commission's guidance below:

    • Take advantage of free credit monitoring, if offered by the responsible company.

    • Get free credit reports and check them for bills or charges you don't recognize.

    • Place a free credit freeze or fraud alert. A credit freeze makes it harder for someone to open an account in your name. However, it requires a few extra steps to temporarily lift the freeze if you apply for something that requires a credit check. A fraud alert requires companies to verify your identity before they will issue new credit in your name.

    • Keep an eye on your credit reports at annualcreditreport.com, where you can check them weekly for free.

    What to do if your credit card number or bank account information has been compromised

    AT&T has said that the breach did not involve “personally identifiable information.” However, if you suspect your banking information has been compromised, the FTC advises the following:

    • Please contact your bank to close your account or cancel your credit or debit card and request a new one.

    • Check transactions regularly for fraudulent transactions.

    • Update automatic payments with your new account information.

    Contributors: Chad Murphy, USA TODAY Network

    Gabe Hauari is a national trending news reporter at USA TODAY. You can follow him on X @GabeHauari or email him at [email protected].

    This article originally appeared on USA TODAY: AT&T Data Breach: Are You Affected? Here’s What to Do.