As your trusted partner in cybersecurity and safety, we are sending this note to inform you of a recent incident involving AT&T, highlighting the importance of remaining vigilant against cyber threats. We are sharing this information to help you stay informed and protected, as we are committed to keeping you updated as part of our dedication to cybersecurity.

AT&T recently announced a significant incident involving the theft of call and text message logs from their workspace hosted by their vendor, Snowflake. This situation affects most, if not all, of AT&T”s cellular customers, with records taken from May 1, 2022, to October 31, 2022, and on January 2, 2023. While the actual content of the calls and texts was not exposed, the stolen metadata includes details about who called or texted whom. Scammers can use this information to impersonate trusted individuals and trick you into sharing personal information.

This type of stolen data can lead to “phishing” scams. For example, attackers might manipulate Caller ID information to make it look like a trusted contact is calling or texting you. They can then convincingly deceive you into providing sensitive information or money by pretending to be someone you know.

To safeguard yourself and your organization from potential scams resulting from this incident, please consider the following recommendations:

  1. Be cautious of Caller ID information. Caller IDs can be easily spoofed, so do not rely solely on them to verify a caller’s identity;
  2. Verify sensitive requests. If you receive a call or text asking for money, passwords, or other confidential information, hang up and call back using a number for the requestor that you know to be genuine. Consider utilizing secure communication methods, such as encrypted messaging apps like Signal, when doing so;
  3. Be wary of requests for personal information. Legitimate organizations will not ask for personal, account, or credit card details via text or call;
  4. Ignore texts from unfamiliar senders. Do not respond to or click on links in texts from unknown numbers;
  5. Stay updated. Regularly check for updates and advice from trusted sources, such as the Federal Communications Commission (FCC) and your mobile provider, about avoiding frauds and scams.

Please continue to be on the lookout for additional information on system security and protection, including our monthly newsletters, emails, security checklists, security videos, and more, as part of our ongoing efforts to combat cybercrime.

Contact Info:

David Snell,
ACTSmart IT
332 Main Street
Wareham, MA 02571
ACTSmartIT.com
David@ACTSmartIT.commailto:david@actsmartit.com
855-WOW-Service ● 781-826-9665