Repackaged AT&T Data Leak Links SSNs to Nearly 49M Phone Numbers
Old Breach Resurfaces with New Threats as Hackers Reformat 2021 Data
What Happened?
AT&T is once again under scrutiny after a repackaged version of a previously known 2021 data breach resurfaced online. A threat actor has released the data—previously leaked in parts over several years—now reformatted to directly link Social Security numbers and birthdates to nearly 49 million phone numbers.
The data set, originally stolen in 2021 by the hacking group ShinyHunters, was leaked in full in 2024 and confirmed by AT&T to impact more than 73 million customers. However, this new iteration, first spotted by HackRead and reported by BleepingComputer, features decrypted personal data fields and cleaned-up records that remove internal metadata, making it easier for cybercriminals to exploit.
What Information Was Exposed?
The newly repackaged data leak contains sensitive customer information, including:
- Full names
- Phone numbers
- Physical addresses
- Unencrypted Social Security numbers (SSNs)
- Unencrypted dates of birth (DOBs)
- Internal AT&T customer data (in earlier versions)
In total, 88 million records were included in the leak, with about 86 million unique entries after duplicates were removed. Among these, 48.9 million unique phone numbers are now directly tied to sensitive personal identifiers.
Where Did the Data Come From?
Despite claims on hacker forums that the data was stolen during the 2024 Snowflake data breach, BleepingComputer’s investigation confirms it originates from the 2021 AT&T breach. The threat actor responsible simply repackaged and restructured the older dataset, removing invalid placeholders and decrypting sensitive information previously stored in encrypted form.
AT&T initially denied the data’s legitimacy back in 2021 but later acknowledged it had indeed been stolen from their systems.
How Can Criminals Use This Data?
The updated data set significantly raises the threat level due to the presence of SSNs and DOBs:
Identity Theft:
With Social Security numbers and birthdates, criminals can open credit accounts, apply for loans, or commit tax fraud under someone else’s identity.
Targeted Scams:
Linked names, addresses, and phone numbers allow for precise phishing and impersonation attempts posing as AT&T or government agencies.
Credential Stuffing:
Although passwords weren’t included, attackers could use this data in combination with credentials from other breaches to hijack online accounts.
How Has AT&T Responded?
In a statement to BleepingComputer, AT&T confirmed that they are investigating the newly posted data but reiterated that it appears to stem from the previously known 2021 breach, not a new attack:
“It is not uncommon for cybercriminals to repackage previously disclosed data for financial gain… We are conducting a full investigation.”
There is no evidence that AT&T’s internal systems have recently been breached.
How OptMsg Helps You Stay Secure
Advanced Email Filtering:
OptMsg blocks phishing and scam emails before they reach your inbox, preventing malicious actors from targeting you with deceptive messages.
Encrypted Messaging:
OptMsg’s encrypted messaging service ensures your sensitive conversations between OptMsg users remain private, protected from unauthorized access.
Privacy by Design:
OptMsg builds privacy into every tool. It does not sell or monetize your data.
What Should You Do If You’re Affected?
- Monitor your financial accounts and credit reports for unusual activity
- Consider placing a fraud alert or credit freeze
- Be wary of unsolicited messages or phone calls requesting personal information
- Use secure platforms like OptMsg for private communication
- Consider signing up for identity theft protection services
Helpful Links:
Why This Still Matters
While this isn’t a new breach, the repackaging and re-release of sensitive personal data make this incident just as dangerous—if not more so—than when it first occurred. Don’t wait until the next data leak hits. Safeguard your digital life with OptMsg’s privacy-first communication tools today.
