AT&T is reportedly denying a data breach after a known hacker offered to sell access to the content of its 70 million-customer database.
According to Bleeping Computer, the carrier is publicly denying that its network was penetrated by “threat actor” ShinyHunters, which is auctioning off access to the alleged confidential information, for as low as $200,000 and as high as $1 million.
“Based on our investigation today,” AT&T told Bleeping Computer, “the information that appeared in an internet chat room does not appear to have come from our systems.” The service provider would not further speculate as to whether the info may have been acquired by a third-party ally. Lifted information appears to include AT&T customer names mailing addresses, phone numbers, social security numbers and dates of birth.
Meanwhile, an unnamed “security researcher” told Bleeping Computer that two of the four example users listed in the hacker’s post are confirmed AT&T customers.
ShinyHunters, the website noted, has a history of breaching accounts such as Microsoft’s GitHub, Wattpad, Tokopedia, BigBasket, Nitro PDF, Pixlr, TeeSpring, Promo.com and Mathway, among others.
