Read more at source.
Read more at source.
The breached data didn't include the content of calls and texts, but it would have shown communication logs for agents' mobile numbers and other phone numbers they used during the six months period. It is unclear how widely the stolen data has spread, if at all. AT&T paid $370,000 in an attempt to have the data trove deleted after the hackers attempted to extort the company.
In response to the breach, the FBI and AT&T have been working closely to mitigate its impact. The FBI has emphasized its commitment to protecting the identity and safety of confidential human sources, while AT&T has reiterated its dedication to security and network remediation.
This breach comes amid revelations about a different hacking campaign by China's Salt Typhoon espionage group, which compromised a slew of US telecoms, including AT&T. This separate situation exposed call and text logs for a smaller group of specific high-profile targets. The full impact of these breaches may not yet be fully understood.
In response to these breaches, the FBI and the Cybersecurity and Infrastructure Security Agency have recommended Americans use end-to-end encrypted platforms like Signal or WhatsApp to communicate. This advice, while sound from a privacy perspective, is surprising given the US Justice Department's historic opposition to the use of end-to-end encryption.
The FBI continually adapts our operational and security practices as physical and digital threats evolve. The FBI has a solemn responsibility to protect the identity and safety of confidential human sources, who provide information every day that keeps the American people safe, often at risk to themselves.
