AT&T revealed in a regulatory filing that a hacker stole call and text records for "nearly all" of its customers.
The company discovered the breach on April 19 when a hacker claimed to have accessed and copied AT&T call logs, according to the SEC filing.
The hacker accessed an AT&T workspace on a third-party cloud platform, stealing customer call and text records from May 1 to Oct. 31, 2022. A few customers were affected on Jan. 2, 2023, as well.
FOX Business reached out to AT&T for comment.
The stolen data includes call and text records of AT&T's cellular customers, mobile virtual network operator customers, and AT&T landline customers.
These records show phone numbers interacted with, counts of interactions, and aggregate call duration, but not the content of calls or messages.
No personal information like Social Security numbers or dates of birth was accessed. However, AT&T noted that names could sometimes be found using online tools.
AT&T launched an investigation and engaged cybersecurity experts to understand the breach.
The company closed off the access point and one person has been arrested, with ongoing efforts to find others involved.
This breach follows a March incident exposing 73 million accounts on the dark web and network outages in February and June.