Forgot your password?
typodupeerror
AT&T Security

AT&T Says Customer Data Accessed To Unlock Smartphones 65

Posted by Soulskill
from the another-day-another-breach dept.
itwbennett writes: Personal information, including Social Security numbers and call records, was accessed for an unknown number of AT&T Mobility customers by people outside of the company, AT&T has confirmed. The breach took place between April 9-21, but was only disclosed this week in a filing with California regulators. While AT&T wouldn't say how many customers were affected, state law requires such disclosures if an incident affects at least 500 customers in California.
This discussion has been archived. No new comments can be posted.

AT&T Says Customer Data Accessed To Unlock Smartphones

Comments Filter:
  • Not doing it right (Score:4, Insightful)

    by sinij (911942) on Friday June 13, 2014 @09:35AM (#47229283) Journal
    Why would anyone give SSN to AT&T? Do they also process your taxes? If not, they have no place asking or retaining this information.
  • by Virtucon (127420) on Friday June 13, 2014 @09:52AM (#47229427)

    Yeah everybody want's your SSN and here's the trick folks, don't give it to them unless you absolutely have to. I'm finding it harder and harder these days to start to trust any companies with sensitive information like this. What's needed is an abstract number like a disposable e-mail address to start protecting our anonymity. Once it's used to verify if the customer is "sponge-worthy" [urbandictionary.com] it disappears and the requester can't use it again.

    I recently bought a new car at the same dealership where I'd previously purchased another one, about 5 years ago, and when going through all the paperwork found that they had my SSN and other financial data on file from the last time from that transaction. Needless to say I went ballistic and asked a few WTF questions of the management. They agreed that after the transaction was concluded that those details would be erased. I've since filed a complaint with the state attorney general, the state consumer affairs and the feds because none of this was disclosed 5 years ago and I don't know who has seen this data or my SSN.

  • by sinij (911942) on Friday June 13, 2014 @09:58AM (#47229475) Journal
    >>> Anyone that refuses to provide a valid SSN is rejected from our services. Your business is clearly contributing to the problem and should be held full liable for any damage resulting from the data breach that you will inevitably experience at some point.

    As to database designers that don't self generate uidis and instead use SSN...

    Still, there are ways around such obnoxious requests. my SSN is 123-4-5678.
  • by jd2112 (1535857) on Friday June 13, 2014 @10:25AM (#47229659)
    Because we all knew terrorists wait up to 10 years after legally purchasing a vehicle before using it in an attack, right?

1 Dog Pound = 16 oz. of Alpo

Working...