What You Need to Know about the AT&T Data Breach
Table of Contents
- Published: Jun 11, 2025
- Last Updated: Jun 11, 2025
AT&T, one of the largest telecommunications providers in the United States and the fourth-largest telecommunications company in the world by revenue, experienced a significant data leak, which became public in June 2025.
According to reports, the leak involves highly sensitive information such as over 43 million Social Security Numbers, full names, phone numbers, dates of birth, physical addresses, and email addresses. In total, there were more than 86 million unique entries in the over 88 million total records leaked. While some data (dates of birth and Social Security Numbers) were originally encrypted, they have now been fully decrypted and are circulating on dark web forums in plain text. There are suggestions that the leaked data, or at least part of it, may be part of the Snowflake data breach that was detected in April 2024.
In April 2024, AT&T confirmed a significant data breach involving unauthorized access to its Snowflake cloud storage environment. According to reports, the breach, which lasted from May to October 2022 and included some records from January 2023, exposed call and text metadata belonging to nearly 110 million customers.
AT&T has claimed that the recent leak was part of the 2024 data breach and that it is not unusual for threat actors to re-package previously leaked data for financial gain.
When Was the AT&T Data Breach?
Data stolen from the latest AT&T breach was first posted on a Russian dark web forum on May 15, 2025, and then re-uploaded on June 3, 2025. The telecommunications giant claimed this breach was part of a 2024 data leak where call and text metadata of over 100 million customers of the company were stolen. The 2024 data leak was confirmed in April 2024; however, the breach was detected between May 1, 2022, and October 31, 2022, and for a few customers from January 2, 2023.
How to Check if Your Data Was Breached
AT&T claims that the 2025 data leak is a repackaging of old data obtained by malicious actors as part of a 2024 breach. Therefore, the company does not intend to reissue notifications to affected customers.
According to the previous notification, if you were an AT&T customer between May 1, 2022, and January 2, 2023, you may verify if your data was part of the leak by logging into your AT&T account. Once logged in, you may see whether your data was part of the breach and request a customized report from the telecommunications company, explaining in simpler terms the nature of the compromised technical data.
Alternatively, you may also use third-party data-breach check services such as HaveIBeenPwned.com and AmIBreached.com to perform a data-leak look up.
What to Do If Your Data Was Breached
If you notice that your data was breached in the AT&T leak, you may request a customized report from the telecommunications company, explaining in simpler terms the nature of the technical data that was compromised. This request may be made from your profile or account with the company. Understanding the nature of the compromised data may help you understand the additional steps to take.
While waiting for a response from AT&T, it is recommended that you contact credit bureaus to request a credit freeze. Also, monitor your financial accounts for unauthorized or suspicious activities.
Are There Any Lawsuits Because of the AT&T Data Breach?
Where there have been no lawsuits filed for the June 2025 data leak, multiple class-action lawsuits were filed against the company for the leak confirmed in 2024, in federal courts across the country. These include those handled by the Gibbs Law Group and the Beasley Allen law firm.
These lawsuits alleged negligence in data protection practices, failure to implement reasonable cybersecurity protocols, and delayed notification to affected users. Plaintiffs sought damages for potential financial losses, emotional distress, and the cost of credit monitoring services.
Can My AT&T Information Be Used for Identity Theft?
With Social Security Numbers, full names, and dates of birth leaked in the AT&T data breach, malicious actors may use your AT&T information for identity theft frauds. Hence, the leak poses significant threats to the identities of AT&T customers whose information was exposed.
What Can You Do to Protect Yourself Online?
To safeguard your personal information from online data breaches, consider taking the following precautionary measures:
- Turn On Two-Factor Authentication (2FA): Enabling 2FA on your online accounts adds an extra layer of security by requiring a second form of verification, such as a code sent to your phone, after entering your password. Therefore, anyone who obtains unauthorized access to your email address or password cannot access your account without the additional confirmation step.
- Use Strong, Unique Passwords: Change the password to any online account you hold that shares login credentials with your AT&T account. Also, avoid reusing passwords across accounts. Use a password manager to generate and store complex credentials.
- Enable Account Alerts: Turn on notifications for account changes, logins, and financial transactions to catch unauthorized access early.
- Beware of Phishing: Do not click on suspicious links or download unknown attachments, especially if they reference AT&T or account recovery.
- Secure Your Mobile Device: Since AT&T is a mobile provider, your SIM or mobile plan may be a target. Include additional PIN protection on your account and contact AT&T to enable account freeze or port-out protection.
- Check Your Credit Report Regularly: Use reliable platforms to monitor your credit report across all three bureaus for free.
