AT&T Announces 7 Million Settlement for 2019 and 2024 Data Breaches

AT&T Announces $177 Million Settlement for 2019 and 2024 Data Breaches

Key Points

  • AT&T reached a $177 million settlement for two major data breaches (2019 and 2024).
  • U.S. District Judge Ada E. Brown gave preliminary approval; claims open Aug 4.
  • Kroll Settlement Administration handles claims via telecomdatasettlement.com.
  • Eligibility requires a Class Member ID sent by AT&T; missing IDs can be requested.
  • Claim deadline is Nov 18, 2025; submissions accepted online or by mail.
  • 2019 breach claimants can receive up to $5,000 with documented loss.
  • 2024 Snowflake breach claimants can receive up to $2,500 with documented loss.
  • Those without proof receive tiered or pro‑rata payments.
  • Affected by both breaches may file in each class; combined payout possible.
  • Contact Kroll at 833‑890‑4930 for assistance or to verify inclusion.

AT&T's $177 Million Payout: How to Claim Your Share of the Settlement
The AT&T logo against a green gradient CNET background.

The AT&T logo against a green gradient CNET background.

Background of the Breaches

AT&T faced two separate security incidents that led to massive exposure of customer data. The first breach, disclosed in March 2024, involved personal details such as Social Security numbers, birth dates and legal names. It affected roughly 7.6 million current AT&T customers and 65.4 million former account holders. In response, AT&T reset passwords for all current customers included in the breach.

The second breach, revealed in July 2024, stemmed from an intrusion into AT&T’s Snowflake cloud‑based data warehouse. Hackers accessed phone records from 2022 for nearly all of AT&T’s U.S. customers – about 109 million individuals. The hacker group ShinyHunters claimed responsibility, and two individuals were later arrested for the attack.

Legal Action and Settlement Terms

Following the disclosures, a wave of lawsuits was filed and later consolidated. In March 2025, all parties agreed to a settlement totaling $177 million. U.S. District Judge Ada E. Brown granted preliminary approval on June 20, and the settlement administrator began accepting claims on August 4.

The settlement is divided into two classes. The “AT&T 1 Data Incident” class, covering the 2019 breach, is allocated $149 million. The “AT&T 2 Data Incident” class, covering the 2024 Snowflake breach, receives $28 million.

How Claimants Can File

Kroll Settlement Administration manages the process through a website at telecomdatasettlement.com. Eligible claimants need a Class Member ID, which AT&T sent via email. If the ID is missing, claimants can contact the administrator by phone or mail.

Claims can be filed online, though the site may place users in a virtual queue during high traffic periods. Alternatively, claim forms are available as PDFs for printing and mailing. All submissions must be postmarked by the November 18, 2025 deadline.

Payout Structure

Compensation depends on whether claimants can document a loss. For the 2019 breach, those who prove a documented loss may receive up to $5,000; others receive a “tiered” cash payment based on whether their Social Security number was exposed.

For the 2024 Snowflake breach, documented losses can yield up to $2,500. Claimants without proof receive a pro‑rata share of the remaining funds, divided evenly among eligible participants.

Dual‑Breach Claimants

Individuals affected by both incidents may file claims in each class. The settlement language does not explicitly prevent a claimant from receiving the full combined amount of $7,500 if both losses are documented.

Next Steps for Consumers

Consumers who believe they were impacted should locate their Class Member ID, gather any documentation of loss, and submit a claim before the deadline. Those uncertain of eligibility can call the settlement administrator at 833‑890‑4930 or write to the Kroll address provided in the settlement notice.

Source: cnet.com