New AT&T data leak links previously exposed info to Social Security numbers, birth dates
In a trend that absolutely no one wants to get behind, another older data leak has been paired with additional customer information to get re-released as a new data leak to expose even more customer info and personal details.
As reported by BleepingComputer, an old 2021 AT&T data leak which contained millions of phone numbers has been linked with Social Security numbers and birth dates of the individual users.
The company has stated that cybercriminals will commonly repackage previously disclosed data for financial aim, which is what they believe is happening here, and that when they learned of the data going up for sale on the dark web they began a full investigation.
While the threat actor who leaked the data onto a popular Russian-speaking hacking forum claimed it was the data stolen during the 2024 AT&T 'Snowflake' cyberattack, which is what was initially reported by HackRead. However, after BleepingComputer analyzed the exposed information, the news outlet determined it was actually from the 2021 data leak which was caused by a hacker dubbed 'ShinyHunters.'
This is not the first time the 2021 ShinyHunters data has been leaked or even linked to additional personal information. For instance last year, the data was leaked along with names, addresses, mobile phone numbers, encrypted date of birth, encrypted Social Security numbers and more. This leak has cleaned up that data to remove internal AT&T information and added the unencrypted Social Security numbers and dates of birth to each customer record.
There are reportedly over 86 million unique records of this nature, with more than 48 million unique phone numbers that have associated customer information. This is due to customers having multiple records with the same phone number being used at different addresses.
Not sure if you were one of the customers affected by these breaches? At this point, if you're an AT&T customer, you should be taking steps to see if you've been affected and then to lock down your own data in order to keep yourself safe.
Get instant access to breaking news, the hottest reviews, great deals and helpful tips.
As with all data breaches, the biggest threat will be phishing attacks and online fraud. Now that hackers can easily figure out your identity, they might try to reach out to you posing as AT&T. That means you'll need to be extra careful when checking your inbox and messages.
Avoid clicking on links or downloading attachments from unknown senders as hackers often set up fake pages to steal your credentials, credit card data and other sensitive info. For this reason, you want to go directly to AT&T's page instead of clicking on any links on search results, social media or even ads that claim to take you to it.
If you haven't signed up for one of the best identity theft protection services, now might be a good time to look into them. You can also consider putting fraud alerts on your files with the Big Three credit-reporting agencies Equifax, Experian and TransUnion, and even instituting a credit freeze (although doing so can complicate getting a loan or opening new payment accounts).
This 2021 data leak seems to be the gift that keeps on giving for hackers, so I wouldn't be surprised if this stolen info is used in future attacks. Don't worry though as we'll be keeping a close eye on this one.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
37 minutes ago
- Yahoo
Supreme Court Grants Musk-Less DOGE Access to Social Security Data
Elon Musk may be persona non grata at the White House, but DOGE lives on. The Supreme Court ruled on Friday that the Department of Government Efficiency should be allowed access to Social Security Administration data, lifting a previously issued injunction that blocked the department from doing so. While the court's majority did not provide a detailed explanation of their ruling, they did write, 'We conclude that, under the present circumstances, SSA may proceed to afford members of the SSA DOGE Team access to the agency records in question in order for those members to do their work.' The three liberal justices dissented, with Justice Ketanji Brown Jackson questioning the urgency of the application and expressing concerns about the potential privacy risks that would result from the ruling. She wrote, 'In essence, the 'urgency' underlying the government's stay application is the mere fact that it cannot be bothered to wait for the litigation process to play out before proceeding as it wishes.' The Trump administration had previously argued that DOGE employees needed access to SSA data in order to halt fraudulent payments, but a federal judge in Maryland ruled that DOGE being granted such access violated federal law and put millions of people's data at risk. Two unions—the American Federation of State, County and Municipal Employees, and the American Federation of Teachers—brought the lawsuit alongside the Alliance for Retired Americans. The groups argued that allowing DOGE broader access to individuals' personal data would violate the Privacy Act and the Administrative Procedure Act. 'The agency is obligated by the Privacy Act and its own regulations, practices, and procedures to keep that information secure—and not to share it beyond the circle of those who truly need it," their lawyers wrote. The data DOGE employees now have access to includes Social Security numbers, medical records, and tax and banking information. In her dissent, Jackson argued that the Supreme Court had 'truly lost its moorings,' by allowing the move and bending its usual standards to accommodate the Trump administration, adding, 'The Court is… unfortunately, suggesting that what would be an extraordinary request for everyone else is nothing more than an ordinary day on the docket for this Administration.'
Yahoo
an hour ago
- Yahoo
Russian attack on Kharkiv kills 1, injures 13, including 2 children
Editor's note: This is a developing story and is being updated. Russian forces attacked Kharkiv with drones, missiles, and KAB guided bombs overnight on June 7, killing at least one person and injuring 13, officials said. Regional governor Oleh Syniehubov that drones had struck civilian targets across the city, including a residential building and a local enterprise. Emergency crews are currently on-scene, searching for additional victims stuck underneath the rubble. Two children were injured in the attack, including a 1-month-old baby, Syniehubov said. At least 40 explosions were recorded across the city amid the attack, local media reported. Mayor Ihor Terekhov that the Osnovyanskyi and Kyiv districts of the city suffered strikes. According to Terekhov, 48 Shahed drones, two missiles, and four guided aerial bombs were launched toward the city. The full extent of the damage was not immediately clear, and no information was provided on the status of the injured victims. Located along the front line, Kharkiv Oblast in Ukraine's northeast is a regular target of Russian missile, drone, and glide bomb attacks from across the border. Overnight on June 5, Russian missile and drone on Kharkiv injured 17 people, including four children. Read also: Ukraine war latest: Russia hits Ukraine with large-scale attack days after Operation Spiderweb; Ukraine targets Russian air bases in 'preemptive strike' We've been working hard to bring you independent, locally-sourced news from Ukraine. Consider supporting the Kyiv Independent.
News24
an hour ago
- News24
Fake Sassa grants ‘news' is exploding online. Here's how to spot the lies
YouTube channels and fake news websites are pumping out dozens of false stories about Sassa grants and jobs every month. These hoaxes prey on vulnerable recipients, spreading confusion, false hope or panic. Many are clearly fake, Andrew Thompson writes, but they have still managed to infiltrate public discourse and be widely shared. South Africa's social grant system is under digital siege. A flood of fake news targeting the South African Social Security Agency (Sassa) has spread across Facebook, YouTube and a network of low-quality, foreign-run websites. These stories are designed to mislead, confuse or panic grant recipients, often with the aim of generating clicks and ad revenue by preying on vulnerable beneficiaries. YouTube channels with tens of thousands of subscribers and some videos with hundreds of thousands of views have together uploaded hundreds of fake videos this year alone. They claim imminent changes to payouts, onerous new rules, or exciting bonuses. Dozens of websites posing as job boards or news sites have also published false notices about new jobs, grant amounts, pension cuts, and backlogged payments. Screengrab None of these channels have any connection to South African state institutions, yet they continue to reach large audiences and prompt real-world concern, forcing Sassa to issue repeated denials. In May, Sassa issued a media statement highlighting the extent of the problem and warning that it is 'concerned about the mushrooming and the rapid spread of fake news and disinformation targeting the Agency and its services almost daily'. It stressed that it has made no announcements about 'double grants', changes to pension rules, or automatic top-ups, which are among the most popular fake news stories that tend to gain traction. 'Furthermore, reports have been spreading like wildfire that Sassa has announced 'New Rules Could Affect Your Pension' from 10 June. The report has even gone further and announced various dates for different provinces. This is not an official announcement from Sassa,' the cautionary statement reads. How fake Sassa grant news spreads: volume, panic, and false hope The wave of Sassa disinformation in 2025 has followed two broad patterns, regardless of the medium or the outlet disseminating it, and the content is broadly split into two themes: fake job adverts and fake grant updates. The job advertisements regularly go viral. They claim that well-paid government positions requiring no experience are available and often direct users to deceptive forms or clickbait sites that mine data. These regularly appear as images on fake government letterheads that circulate widely on platforms like Facebook, WhatsApp and X. SASSA The fake grant updates employ a more familiar disinformation approach with a different motive. These mostly AI-generated false news articles report on increased or double payments, pension rule changes, or Sassa 'deadlines' that risk non-payment of grants. All are presented without basis, and often spill over from clearly fake websites into public discourse. Fake news websites and YouTube accounts repeatedly publish variations of similar videos and articles, many of which use text-to-speech tools and AI-generated thumbnails to appear convincing. The tone ranges from panic ('rules changing next week!') to false reassurance ('you can still claim your R7 000 today'). Most rely on sheer volume, hoping that one story or job advert will catch on and spread - as many already have. News24's Disinformation Desk has counted hundreds of fake news articles about Sassa currently online, and although many fade into obscurity, an increasing number are breaking through requiring official responses. Screengrab For now, the motive of these platforms appears to be financial gain. Most of the videos are hosted on monetised channels, and the websites link to Google Adwords accounts. If these get enough traction from panicked recipients, they will generate some revenue for the owners. Yet ironically, much of the vitality of this material reveals itself on platforms like WhatsApp without direct links to the source, which do not generate the website owners income but have the same impact on grant recipients. The majority of the Sassa disinformation that gains mainstream traction appears not to have an overt political motive or agenda, yet. Instead, it is riding on the wave of attention afforded by this vulnerable target market, many of whom are understandably deceived by the deluge. Rapid-fire Sassa debunks from the last few months alone News24's Disinformation Desk has identified hundreds of fake news stories and videos targeting Sassa recipients published in the last few months alone. Here are the most prominent examples, with their themes often emulated across other fake news sites: A viral post linking to a website called All Provinces Jobs claimed that 'South African government jobs 2025' were open for applications. The link leads to a fraudulent website not affiliated with any government department. Similar posts appeared on Facebook pages falsely advertising hiring opportunities through Sassa, often featuring job titles and closing dates to lend false credibility and create a sense of urgency. YouTube channels 'SASSA Benefits Updates' and 'Stimulus Sam' have released several dozen videos each about grant payments in South Africa, including that increased Sassa payments would be made in June 2025. The videos utilise text-to-speech narration featuring a vaguely South African accent and footage that is clearly created with generative AI. Both channels are entirely fake. A report hosted on the fake news website Debtcol Council claimed that 'new rules could affect your pension' from 10 June. Sassa has confirmed that this is also false. Another story on that website claimed application backlogs had been cleared, while yet another suggested a new top-up payment was in progress. All are fabricated. A website called Prabh Honda published a story about Sassa grant suspensions, which is entirely baseless and without truth. A piece on Rise Up WV, a website responsible for several prominent fake news items, stated that grant beneficiaries needed to reapply for doubled payments due to 'SASSA system updates'. There is no basis for this in any of Sassa's official communications. Why it matters - and how to protect yourself or family members Many of the intended recipients of these grants are older, economically vulnerable, and may not be experienced with digital literacy or fact-checking online. The combination of desperation and trust in anything that looks official makes this a fertile ground for exploitation via disinformation. These false reports don't just casually mislead - comments beneath even palpably false news items and videos indicate the confusion and desperation many experience about this topic. This fake news also distracts Sassa, which is already stretched in the payment grants, by forcing them to correct disinformation. To stay safe, advise family members of the following: Check only official Sassa channels: Information is reliably published on and Sassa's verified X and Facebook pages. Do not trust any information sent via WhatsApp or Facebook Messenger. Sassa does not communicate important information via forwarded messages. Never enter personal information into a form on a website claiming to offer Sassa job opportunities. Ignore YouTube channels with videos claiming to be the Department of Social Development or Sassa. Sassa's official YouTube page is not used to share news about grants. When in doubt, don't share: spreading false information, even with good intentions, can cause unnecessary panic.
