Not as though that this something new, after AT&T was found handing the NSA data, but there is a twist. Instead of the info being phone call records, handed out voluntarily, this time it is credit card data taken by “unauthorized personnel” (uh..hackers).
The potential victims (estimated at 19,000) are folks who purchased products and services from AT&T’s website. No worries there – anyone affected will be liable for no more than the standard $50 or so that applies in the case of credit card fraud. Nonetheless, AT&T has made a point of promptly notifying everyone involved. Good for them.
Unfortunately, that data is purportedly being used for phishing attacks. Yes, already.