The US telecommunications giant said on Saturday that a dataset found on the "dark web" contains information such as Social Security numbers for about 7.6 million current AT&T account holders and 65.4 million former account holders.
The company said it has already reset the passcodes of current users and will be communicating with account holders whose sensitive personal information was compromised.
It is not known if the data "originated from AT&T or one of its vendors," the company said in a statement.
We understand your concern. The information varied by customer and account. If your sensitive personal information was compromised, we'll send you a letter via mail and provide complimentary identity theft and credit monitoring services. Visit — AT&T (@ATT) https://t.co/tOZWNMOBen for more.March 30, 2024
The compromised data is from 2019 or earlier and does not appear to include financial information or call history, it said.
In addition to passcodes and Social Security numbers, it may include email and mailing addresses, phone numbers and birth dates.
It is not the first crisis this year for the Dallas-based company.
An outage in February temporarily knocked out mobile phone service for thousands of US users.
AT&T at the time blamed the incident on a technical coding error, not a malicious attack.
13°C