Trends

Hackers cash in, AT&T’s $370K payout for stolen data deletion

AuthorZoey Zhu

Reading Time2 min

PublishedJuly 24, 2024

Primary DomainN/A

Content TypeN/A

TopicN/A

EntityN/A

RegionN/A

Time HorizonN/A

ImpactN/A

ConfidenceN/A

Headline

Context

OUR TAKE AT&T’s decision to pay a ransom to a hacker underscores the severity and complexity of cybersecurity threats faced by major corporations. This incident highlights the urgent need for stronger security measures and protocols to protect sensitive data from breaches. — Zoey Zhu, BTW reporter AT&T recently disclosed that hackers stole call records of tens of millions of customers. To mitigate the damage, AT&T paid over $300,000 to a member of the ShinyHunters hacking group to delete the data. The hacker, who initially demanded $1 million but settled for a third of that amount, provided proof of deletion through a video.

Evidence

Pending intelligence enrichment.

Analysis

WIRED confirmed the payment of 5.7 bitcoin ($373,646) on May 17 using blockchain tracking tools, and TRM Labs verified that the funds were laundered through multiple exchanges. Security researcher Reddington, who mediated the negotiation, alerted AT&T to the breach three months ago after verifying the stolen data. AT&T acknowledged the breach in a regulatory filing, linking it to a larger hacking spree targeting Snowflake cloud storage accounts. Over 150 companies, including Ticketmaster, Santander, LendingTree, and Advance Auto Parts, were affected. Also rea d: AT&T paid $370,000 to delete stolen customer data Also read: North Korean hackers funnel $150,000 of stolen crypto to Asian firm

Key Points

AT&T paid over $370,000 to a hacker to delete stolen call records of millions of customers.
The hacker, part of the ShinyHunters group, provided proof of deletion via video.