CPNI letter from AT&T

Hi all,

In April 2022 an unauthorized person gained access to some account information through a webpage. We identified and stopped this suspicious activity. No sensitive, personal, or financial information was exposed.

A letter was sent to address this. Active protections are in place as a standard practice to address and steps were take to combat items of this nature.. 

We can confirm that 855.739.0655 is affiliated with AT&T. The number is listed on the breach letter for you to contact us with any questions you have regarding this incident or to report any changes on your account that you do not recognize. 

AT&T Community 

It could be. Without seeing the entire letter, no way to tell. Was it just to inform or did it ask you to take some action?

thank you for the reply. I was hoping someone from AT&T could confirm they are sending such letters. the letter advises me to call 855-739-0655 but I obviously don't want to call that number unless it is really AT&T

thank you for confirming that you are sending such letters, and that the phone number is legitimate. I guess it is a form letter you sent to many customers

You're most welcome, @QuestionCPNI. 

Please feel free to reach back out to us if you have any additional questions. Thanks for visiting our AT&T Community Forums! 

Sydne, AT&T Community Specialist

Apparently a lot of customers are receiving this letter. I too received one in today's mail. The reply that Sydne (ATTHelp) posted is, in part, a direct quote from the letter. The website posted (not linked) is to an AT&T Support document so it does seem legitimate but it does sound like just another service that AT&T wants you to subscribe to, albeit free.

It could be that AT&T is finally admitting that there was a security breach of some sort with one of their vendors that may compromise customer data.

I received the same thing about 8 months ago but thought it was just AT&T looking to sell a security service or option. Maybe not.

Is that letter legitimate & actually from AT&T?  I received that message today via email.   HOWEVER I thought ALL of my AT&T accounts had been updated to a newer email address and therefore suspected this message could be spam since it was sent to the old email address. (which should be disabled by the email provider any day.)

Not if AT&T/Yahoo has been collating a list for the last couple of months to send out to possibly affected customers. There's nothing really for you to do other than maybe change your password again if you are concerned. Just don't click on the links. You can change your password or see what other options AT&T recommends by going directly to AT&T bypassing the links.

Why are customers unable to opt out of CPNI from ATT website? https://www.att.com/ecpnioptout/InitiateCPNIForm.action 

It keeps throwing the error message 'ECPNI0110: We're unable to find your account. Please call a representative at 1.800.288.2020'

It really gives a feel that ATT intentionally makes it harder to opt out