Hackers have found a way to exploit a serious issue in the AT&T email application programming interface or API, causing a massive security breach. The company has notified its customers of the vulnerability and has implemented security updates to address the situation, but it’s evident that the updates came too late for a large number of users.
According to reports, hackers have targeted AT&T email addresses – primarily att.net, sbcglobal.net, and bellsouth.net – to gain unauthorized access to user accounts and steal cryptocurrency. They allegedly accomplished this by using a mail key that allowed them access to the accounts without needing the user’s password.
The extent of the breach is staggering. It is believed that the hackers have already made between $15 to $20 million on stolen crypto throughout the month of November 2022, and the number continues to rise as more cases come to light. The AT&T email API issue is reportedly the biggest crypto theft in history in terms of amount.
AT&T has taken measures to manage the situation by implementing updates and sending notifications to its customers. In addition, the company has locked out some user accounts requiring password resets, although it has not yet been confirmed if this is an immediate solution to prevent further intrusion.
The company has also denied allegations that hackers may have had access to an internal AT&T portal for employees called OPUS. While the situation is still unclear, AT&T insists that the exploit was only an API access issue, and that there was no intrusion into their system.
In the meantime, AT&T users are urged to be vigilant and take precautionary measures to protect their accounts. Users are advised to immediately change their passwords and enable two-factor authentication to help prevent unauthorized access to their accounts. It is also recommended to keep an eye on their email accounts and lookout for any suspicious activity.
In conclusion, the AT&T email API issue is a serious matter that should not be taken lightly. The company has already made efforts to fix the problem, and it’s up to the users to take immediate action to protect their accounts. If you suspect that you have been affected by the breach, don’t hesitate to contact AT&T support or seek help from a cybersecurity professional.
