An insider breach recently shook AT&T. One of its employees reportedly accessed important information of a number of customers. The mobile carrier was humble enough to report the incident and warn customers about the data breach. Information obtained included diver’s license and Social Security numbers of unknown number of AT&T subscribers.
AT&T sent a letter to the Vermont Attorney General as an official report. AT&T’s director of finance billing operations Michael A. Chiarmonte wrote:
“We recently determined that one of our employees violated our strict privacy and security guidelines by accessing your account without authorization in August 2014, and while doing so, would have been able to view and may have obtained your account information including your social security number and driver’s license number. Additionally, while accessing your account, the employee would have been able to view your Customer Proprietary Network Information (CPNI), without proper authorization.”
Because of the security breach, affected customers have been offered one year of free credit monitoring. The company is also asking the customers to change theirs account passwords as precautionary measure. AT&T’s Michael Chiaramonte apologized for what happened. “On behalf of AT&T, please accept my sincere apology for this incident,” he said. “Simply put, this is not the way we conduct business and, as a result, this individual no longer works for AT&T.”
VIA: Re/code
SOURCE: threatpost
