AT&T was breached between April 9 and April 21, but AT&T didn’t disclose the breach to affected customers until last week, according to a filing with the California Public Utilities Commission.
The first buzz about the breach was, three employees of one of AT&T’s vendors accessed some AT&T’s customer accounts without proper authorization. AT&T says, the third-party vendor stole codes used to unlock cell phones and associated services. Social Security numbers and other sensitive data were also stolen by the hackers.
The troubling part about this incident is there was more than a month’s wait before AT&T notified its customers about the breach.
Read more of the published story in Washington Post. Posted recently – “If your business suffers a breach, follow these rules to keep damages to a minimum“.
Read:
Call us with questions regarding the safety of your network environment, PCI Compliance, data security, systems management or Security Strategist consulting help. Phone 636-557-7777 or email pci@www.omegasecure.com.