AT&T, Ticketmaster data breach hackers charged with stealing 50 billion records

Victims, including AT&T, paid out ransoms to prevent the stolen data from being misused.
By Matt Binder  on 
AT&T hackers
Two hackers have been indicted for their role in the AT&T and Ticketmaster data breaches. Credit: Miguel Candela / SOPA Images/SOPA Images/LightRocket via Getty Images

We now know the identities of the hackers behind the massive AT&T data breach – and we now know exactly how much data was stolen, too.

The U.S. has indicted two individuals, Connor Moucka and John Binns, according to new documents, for hacking third-party cloud data storage and analytics company Snowflake. The Snowflake hack led to data breaches at numerous companies using the platform such as AT&T, Ticketmaster, and more than 150 other corporations.

As TechCrunch pointed out in its report, while the victims are not mentioned by name in the indictment, the descriptions of the victims are quite clear in some cases. For example, AT&T is referred to as Victim-2, which is described as a "major telecommunications company located in the United States." The indictment states that the data breach occurred on April 14, aligning with AT&T’s original statement that it became aware of the breach on April 19.

New details of the data breach

New details have emerged about the Snowflake hack that led to the data breach, revealing information that was previously unknown.

Mashable Light Speed
Want more out-of-this world tech, space and science stories?
Sign up for Mashable's weekly Light Speed newsletter.
By signing up you agree to our Terms of Use and Privacy Policy.
Thanks for signing up!

For example, while AT&T originally said it would notify around 110 million customers who were affected by the data breach, it was unclear just how much data had been stolen. According to the indictment, Moucka and Binns extracted around 50 billion phone call and text message records, including dialed numbers.

While the content of those calls and texts weren't stolen, the records alone were apparently enough to extort affected customers. The two hackers extorted at least three victims, obtaining a total of 36 Bitcoin. The indictment says that the Bitcoin amount was worth $2.5 million at the time.

Furthermore, as previously reported, the hackers were able to get AT&T itself to pay $370,000 in exchange for deleting the data they stole.

Both Moucka and Binns have been arrested and are currently being held in custody.


Recommended For You
Largest U.S. healthcare data breach exposes medical records of 100 million customers
UnitedHealthcare logo in the background and on a phone

Hackers steal nearly 1.7 million credit card numbers in breach
Hacker with stolen credit card

Andrew Tate 'online university’ suffers breach: 800,000 users' data exposed
Andrew Tate

Over 200,000 Comcast customers affected in data breach: Names, IDs, Social Security numbers exposed
Comcast logo

Fidelity data breach compromises more than 77,000 customers
Fidelity logo

Trending on Mashable
NYT Connections hints today: Clues, answers for December 6, 2024
A phone displaying the New York Times game 'Connections.'

NYT Mini crossword answers, hints for December 6, 2024
Closeup view of crossword puzzle clues

At 2 a.m., an unexpected event led to a surprise planet discovery
A NASA conception of what the exoplanet Kepler-51e might look like.

Wordle today: Answer, hints for December 6
a phone displaying Wordle

Tesla suspends Cybertruck production. Who could have predicted this?
Tesla vehicles, including Cybertrucks, loaded on a transport that seems to be going nowhere.
The biggest stories of the day delivered to your inbox.
This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.
Thanks for signing up. See you at your inbox!