The AT&T Data Breaches: What You Need to Know About the $177 Million Settlement

In recent years, the digital landscape has faced its fair share of challenges, and data breaches have emerged as a significant concern for both individuals and corporations. One of the most notable incidents involves telecommunications giant AT&T, which has been embroiled in legal actions stemming from multiple data breaches affecting millions of customers.

Overview of the Breaches

2019 Data Breach

The saga began in 2019 when AT&T acknowledged a severe data breach that compromised the private information of over 70 million current and former customers. Sensitive personal data, including social security numbers, birth dates, and legal names, were leaked on the web. The breach affected approximately 7.6 million current customers and 65.4 million former account holders.

In response to the incident, AT&T took immediate steps by resetting passwords for all current customers involved in the compromised data. Nevertheless, the damage was done, and the breach went largely unrecognized until March 2024.

2024 Snowflake Breach

Fast-forward to April 2024, another breach came to light when hackers infiltrated AT&T’s cloud-based data warehouse, Snowflake, exposing the phone records of nearly every AT&T customer in the U.S.—an estimated 109 million people. AT&T disclosed this breach in July 2024.

The hackers, associated with the ShinyHunters group, claimed responsibility for similar attacks on about 165 organizations around the same time. Following extensive investigations, two members of this group were arrested, but the fallout for AT&T was just beginning.

The Financial Fallout: Understanding the Settlement

In June 2025, a preliminary settlement of $177 million was approved by U.S. District Judge Ada E. Brown, regarding the claims from both breaches. The settlement is divided between the two incidents: $149 million for the 2019 breach and $28 million for the 2024 breach.

Both classes of affected individuals have distinct criteria for compensation, categorized as follows:

1. 2019 Data Incident: This class will receive a significant payout of $149 million. Individuals with documented losses can claim up to $5,000, while others may receive tiered payments based on whether their social security numbers were part of the leaked data.

2. 2024 Data Incident: This class will have access to a $28 million pool of funds, where those who can prove documented losses can claim up to $2,500. For those without proof, a pro rata share of the remaining funds will be divided evenly among them.

How to File a Claim

Eligible customers wishing to partake in this settlement can file claims through the Kroll Settlement Administration’s designated website: telecomdatasettlement.com.

To initiate a claim, you’ll need a Class Member ID, which should have been sent to you via email. If you haven’t received this notification, make sure to check your spam folder. Alternatively, you can reach out to the settlement administrator at 833-890-4930 or mail inquiries to the Kroll address in New York.

For those who prefer filing by mail, printable claim forms for both breaches are readily available online and must be postmarked by November 18, 2025.

Payment Estimates

The settlement amount for claimants can vary based on a multitude of factors, including the number of people filing claims. Key points to highlight are:

• Individuals affected by the 2019 breach with documented losses can receive up to $5,000.
• Similarly, those impacted by the Snowflake breach can claim up to $2,500 under the same conditions.
• Any claimant can file for both breaches, and there’s potential for cumulative payouts, although clarification on maximum totals for dual claimants remains somewhat ambiguous.

What to Expect Moving Forward

The AT&T settlement serves as a cautionary tale about digital privacy and data security in today’s interconnected world. While the compensation is intended to address damages suffered by the breach victims, it underscores the critical importance of safeguarding personal information against future attacks.

With the deadline for filing claims fast approaching, eligible customers should act promptly to ensure their rights are preserved. As the digital landscape continues to evolve, the implications of these breaches highlight the extensive risks associated with data security for both individuals and corporations alike.

Stay updated, keep an eye on your email for any notifications, and don’t miss your opportunity to claim what may be due to you as a result of these significant security lapses at AT&T.