AT&T has released a formal statement to let their consumers know that they have experienced a potential security breach that would allow the successful attacker to compromise user accounts that hold some sensitive data.
Fortunately, AT&T says they caught the act in progress and shut it down immediately. They claim that no information appears to have been obtained from the attack, though they will be conducting an official investigation to figure out whodunnit and why.
We recently detected what could have been an organized attempt to obtain information on a number of customer accounts. The people in question appear to have used “auto script” technology to determine whether AT&T telephone numbers were linked to online AT&T accounts. No accounts were breached and our investigation is ongoing to determine the source or intent of the attempt to gather this information. In the meantime, out of an abundance of caution, we are advising the account holders involved.
You likely have very little to worry about but keep an eye out on for your mail or online statements in case AT&T issues another statement based on further developments. [via Engadget]