{“lastseen”:”2026-02-03T14:10:02″,”description”:”When data resurfaces, it never comes back weaker. A newly shared dataset tied to AT\\u0026T shows just how much more dangerous an \u201cold\u201d breach can become once criminals have enough of the right details to work with.\\n\\nThe dataset, privately circulated since February 2, 2026, is described as AT\\u0026T customer data likely gathered over the years. It doesn\u2019t just contain a few scraps of contact information. It reportedly includes roughly **176 million records** , with\u2026\\n\\n * Up to 148 million Social Security numbers (full SSNs and last four digits)\\n * More than 133 million full names and street addresses\\n * More than 132 million phone numbers. \\n * Dates of birth for around 75 million people\\n * More than 131 million email addresses\\n\\n\\n\\nTaken together, that\u2019s the kind of rich, structured data set that makes a criminal\u2019s life much easier.\\n\\nOn their own, any one of these data points would be inconvenient but manageable. An email address fuels spam and basic phishing. A phone number enables smishing and robocalls. An address helps attackers guess which services you might use. But when attackers can look up a single person and see name, full address, phone, email, complete or partial SSN, and date of birth in one place, the risk shifts from \u201cannoying\u201d to high\u2011impact. \\n\\nThat combination is exactly what many financial institutions and mobile carriers still rely on for identity checks. For cybercriminals, this sort of dataset is a Swiss Army knife. \\n\\nIt can be used to craft convincing AT\\u0026T\u2011themed phishing emails and texts, complete with correct names and partial SSNs to \u201cprove\u201d legitimacy. It can power large\u2011scale SIM\u2011swap attempts and account takeovers, where criminals call carriers and banks pretending to be you, armed with the answers those call centers expect to hear. It can also enable long\u2011term identity theft, with SSNs and dates of birth abused to open new lines of credit or file fraudulent tax returns.\\n\\nThe uncomfortable part is that a fresh hack isn’t always required to end up here. Breach data tends to linger, then get merged, cleaned up, and expanded over time. What\u2019s different in this case is the breadth and quality of the profiles. They include more email addresses, more SSNs, more complete records per person. That makes the data more attractive, more searchable, and more actionable for criminals.\\n\\nFor potential victims, the lesson is simple but important. If you have ever been an AT\\u0026T customer, treat this as a reminder that your data may already be circulating in a form that is genuinely useful to attackers. Be cautious of any AT\\u0026T\u2011related email or text, enable multi\u2011factor authentication wherever possible, lock down your mobile account with extra passcodes, and consider monitoring your credit. You can\u2019t pull your data back out of a criminal dataset\u2014but you can make sure it\u2019s much harder to use against you.\\n\\n## What to do when your data is involved in a breach\\n\\nIf you think you have been affected by a data breach, here are steps you can take to protect yourself:\\n\\n * **Check the company\u2019s advice.** Every breach is different, so check with the company to find out what\u2019s happened and follow any specific advice it offers.\\n * **Change your password.** You can make a stolen password useless to thieves by changing it. Choose a strong password that you don\u2019t use for anything else. Better yet, let a password manager choose one for you.\\n * **Enable two-factor authentication (2FA****).** If you can, use a FIDO2-compliant hardware key, laptop, or phone as your second factor. Some forms of 2FA can be phished just as easily as a password, but 2FA that relies on a FIDO2 device can\u2019t be phished.\\n * **Watch out for impersonators.** The thieves may contact you posing as the breached platform. Check the official website to see if it\u2019s contacting victims and verify the identity of anyone who contacts you using a different communication channel.\\n * **Take your time.** Phishing attacks often impersonate people or brands you know, and use themes that require urgent attention, such as missed deliveries, account suspensions, and security alerts.\\n * **Consider not storing your card details**. It\u2019s definitely more convenient to let sites remember your card details, but it increases risk if a retailer suffers a breach.\\n * **Set up identity monitoring**, which alerts you if your personal information is found being traded illegally online and helps you recover after.\\n\\n\\n\\nUse Malwarebytes\u2019 free Digital Footprint scan to see whether your personal information has been exposed online.\\n\\nSCAN NOW\\n\\n* * *\\n\\n**We don ‘t just report on threats\u2014we help safeguard your entire digital identity**\\n\\nCybersecurity risks should never spread beyond a headline. Protect your, and your family’s, personal information by using identity protection.”,”published”:”2026-02-03T11:48:18″,”modified”:”2026-02-03T11:48:18″,”type”:”malwarebytes”,”title”:”AT\\u0026amp;T breach data resurfaces with new risks for customers”,”source”:””,”references”:””,”id”:”MALWAREBYTES:3CDAB9FA1BAC680FDF151C74BD37B49B”,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/www.malwarebytes.com\/blog\/news\/2026\/02\/att-breach-data-resurfaces-with-new-risks-for-customers”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2026-02-03T14:10:02″,”description”:”When data resurfaces, it never comes back weaker. A newly shared dataset tied to AT\\u0026T shows just how much more dangerous an \u201cold\u201d breach can…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,12,115,13,33,7,11,5],"class_list":["post-38736","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-exploit","tag-malwarebytes","tag-news","tag-none","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n