Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
On Wednesday, the Federal Communications Commission announced it has reached a $25 million settlement with AT&T Services Inc. over allegations the phone carrier failed to protect the personal data of hundreds of thousands of customers whose personal information was compromised in a data breach that occurred between November 2013 and April 2014.
According to the FCC, the records of nearly 280,000 U.S. customers were accessed by employees at call centers used by AT&T in Mexico, Colombia and the Philippines. The information that was reportedly accessed included names, Social Security numbers and other customer proprietary network information that is required to for unlock requests for AT&T cell phones. This data was allegedly provided to unauthorized parties who may have been trafficking in stolen phones. At least two employees have reportedly confessed that they sold the information to an unauthorized third party. The third party entity reportedly used the customer information to make more than 290,000 unlock requests through AT&T’s online unlock request portal.
“To settle this matter, AT&T will pay a civil penalty of $25,000,000 and develop and implement a compliance plan to ensure appropriate processes and procedures are incorporated into AT&T’s business practices to protect consumers against similar data breaches in the future,” the data breach settlement documents state. “In particular, AT&T will be required to improve its privacy and data security practices by appointing a senior compliance manager who is privacy certified, conducting a privacy risk assessment, implementing an information security program, preparing an appropriate compliance manual, and regularly training employees on the company’s privacy policies and the applicable privacy legal authorities.”
In addition to these policy changes, AT&T will notify all customers whose accounts were improperly accessed and pay for credit monitoring services for consumers affected by the data breach. According to AT&T, there is no evidence that the data breach has caused customers’ data to be used for identity theft.
According to the FCC, the AT&T data breach settlement is the largest data security and privacy enforcement action in the agency’s history. “As the nation’s expert agency on communications networks, the Commission cannot – and will not – stand idly by when a carrier’s lax data security practices expose the personal information of hundreds of thousands of the most vulnerable Americans to identity theft and fraud,” FCC Chairman Tom Wheeler stated. “As today’s action demonstrates, the Commission will exercise its full authority against companies that fail to safeguard the personal information of their customers.”
The AT&T Data Breach Lawsuit is In the Matter of AT&T Services Inc., before the Federal Communications Commission.
ATTORNEY ADVERTISING
Top Class Actions is a Proud Member of the American Bar Association
LEGAL INFORMATION IS NOT LEGAL ADVICE
Top Class Actions Legal Statement
©2008 – 2024 Top Class Actions® LLC
Various Trademarks held by their respective owners
This website is not intended for viewing or usage by European Union citizens.
21 thoughts onAT&T to Pay $25M in Data Breach Settlement with FCC
I am an IT person and very careful with my personal info. I was really concerned that I started getting the calls from 850 about lawsuits, my broken windows 8.1 update (I use Linux), and other scammers. I think this could be where it came from. I actually dumped AT&T after 4 years just 2 months ago. Thanks for the post. I am going to follow up with some complaints myself:)BTW: Is there any reason not to block all 850 numbers? I don’t think I have ever gotten a legit call from that area code. That may be my next step also.
constantly harangued by phone calls at hom and on cell, morning, noon, nightime, sundays, after 9PM, also letters and emails, very stressful
I highly doubt AT&T is going to notify all customers affected. I get so many calls from telemarketers on my home and cell that I have given up on reporting them. When I tell them my numbers are on the do not call list and I want them to remove my number they always tell me I have contacted their business first The latest is a company at (850) 558-6686 who is convinced I have a bladder mesh I need to sue someone for. Somehow they also have my daughter’s cell number at school and have been calling her at school! Is there a way to file a complaint, even if you are not notified by AT&T that your numbers were sold & your personal information jeopardized?
yes
when i was with AT&T i noticed my bill kept getting higher & higher each month, my plan changing also i noticed 2 Samsung Note 2s purchased & im being told i owe them for a Note 2. Never owned a Note 2
My laptop and desk top was hacked or something went wrong I had to pay $250.00 plus several days they where down
I have been getting calls from Iceland & Europe
i got a lot of caalls how do I know if they were related,
MY CREDIT SCORE WENT DOWN TO 514 FROM OVER 600,THINK MY INFORMATION WAS USED BUT HOW CAN I PROVE IT?WAS A CUSTORMER FROM LAST YEAR ???
Yes i dis
Yes