AT&T Community Forums

Is this CPNI email a phishing scam?

I received an email from"AT&T <[email scrubbed]>". Here is the email and let me know if its legit:

Notice Regarding Customer Proprietary Network Information (CPNI) – Wireless Account Ending in 6811

Dear Hugo Cabello,

AT&T's commitment to customer privacy and data security is a top priority. We recently determined that an unauthorized person breached a vendor's system and gained access to your "Customer Proprietary Network Information" (CPNI). In our industry, CPNI is information related to the telecommunications services you purchase from us, such as the number of lines on your account or the wireless plan to which you are subscribed. However, please rest assured that no sensitive personal or financial information such as Social Security number or credit card information was accessed.

To address this issue, the following steps have been taken:

· We confirmed with the vendor that the vulnerability has been fixed.

We have notified federal law enforcement about the unauthorized access of your CPNI as required by the Federal Communications Commission. Our report to law enforcement does not contain specific information about your account, only that the unauthorized access occurred.

If you have an existing account with AT&T, you may want to consider adding our "extra security" password protection to the account at no cost. You can learn more at https://www.att.com/support/article/my-account/KM1051397/

Please accept our apology for this incident. If you have further questions, you may visit: https://att.com/data-event/login You will be prompted for your myAT&T login credentials, and if you do not have a myAT&T profile, you can create one using your account information.

Thank you,

AT&T

Responses

ScottP1

New Member

•

1 Message

9 months ago

I've got an ongoing discussion with AT&T on this topic (as a customer). They've confirmed it's a valid email, which you can verify by comparing the email domain to other emails you receive (ads, bill notifications, etc.) "message.att-mail.com" is AT&T.

Note that I did not receive any useful help from AT&T technical support or "international fraud" on this issue. They talked just to talk, stating that it was a phishing email (it's not). The "fraud" department also stated that someone in AT&T committed the crime (they didn't).

The bigger concern is the lack of detail about the breach. What specifically was exposed? Who is the unnamed vendor that mishandled the data, and what did they do with that data exactly? What other vendors have this access to CPNI data, and how can we confirm if they are more trustworthy than the unnamed vendor that committed this act?

It's a good reminder to everyone that as an AT&T customer, we were automatically "opted-in" on CPNI data sharing for third-party vendor marketing purposes. You will need to actively opt-out to ensure this will not happen with your CPNI data again. Don't assume that AT&T puts your privacy as a top priority. https://www.att.com/ecpnioptout

0

margo502

New Member

•

4 Messages

9 months ago

Notice Regarding Customer Proprietary Network Information (CPNI) – Wireless Account Ending in (LAST 4 DIGITS OF MY ACCT APPEAR HERE)

Dear MY NAME HERE,

AT&T's commitment to customer privacy and data security is a top priority. We recently determined that an unauthorized person breached a vendor's system and gained access to your "Customer Proprietary Network Information" (CPNI). In our industry, CPNI is information related to the telecommunications services you purchase from us, such as the number of lines on your account or the wireless plan to which you are subscribed. However, please rest assured that no sensitive personal or financial information such as Social Security number or credit card information was accessed.

To address this issue, the following steps have been taken:

We confirmed with the vendor that the vulnerability has been fixed.
We have notified federal law enforcement about the unauthorized access of your CPNI as required by the Federal Communications Commission. Our report to law enforcement does not contain specific information about your account, only that the unauthorized access occurred.

If you have an existing account with AT&T, you may want to consider adding our "extra security" password protection to the account at no cost. You can learn more at https://www.att.com/support/article/my-account/KM1051397/

Please accept our apology for this incident. If you have further questions, you may visit: https://att.com/data-event/login You will be prompted for your myAT&T login credentials, and if you do not have a myAT&T profile, you can create one using your account information.

Thank you,

AT&T

To ensure the delivery of AT&T emails to your inbox, please add [email scrubbed] to your email address book or safe senders list.

Privacy Policy

© 2023 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual Property and/or AT&T affiliated companies.

AT&T, 208 S. Akard St, Dallas, TX 75202

A1951413 | A000000010

‌

Note: This comment was created from a merged conversation originally titled Suspicious email from ATT

3

0

kdfederer

ACE - Expert

•

13.1K Messages

That is a true email.

This is a user to user forum. I am a user, just like almost everyone else on the site.

Award for Community Excellence Achiever*
*I am not an AT&T employee, and the views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.

Like

9 months ago

0

margo502

New Member

•

4 Messages

You mean true as in "real"? No, it is not. If you get it don't click on those links. I got on chat with ATT and they confirmed it was not from them and to not click any links. I asked what to do and they said to post it here as a warning to others. Sorry I should have said that at the beginning. It looks quite real.

Like

9 months ago

0

MicCheck

ACE - Expert

•

13.7K Messages

Yes, it is a real email; this breach occurred. The links take you to legitimate AT&T sites. AT&T confirmed as much in this thread: https://forums.att.com/conversations/att-mail-features/is-this-cpni-email-a-phishing-scam/64066deaac6ccc24bdf19e05?page=1

It doesn't really matter, since no actually sensitive data was released. It won't hurt to ignore the email. But if someone would like to learn more there is no harm in clicking the links.

Award for Community Excellence Achiever*
*I am not an AT&T employee, and the views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.

Like

9 months ago

0

pgavenda

New Member

•

5 Messages

9 months ago

Go ahead, sounds like fun! Meanwhile I'd suggest ATT not send out emails that behave like phishing emails. Most people have learned not to click on links in emails; most companies have learned better strategies to communicate with customers.
*EDIT* Directed at jeffermc comment above.

(edited)

0

Spfeiffer40j28

New Member

•

2 Messages

9 months ago

This is legitimate I know the attuid of the person who accessed my account. I know the time they accessed it. I know the date they accessed it I know the location they access it.

The third party is prime communications.

I have made several complaints as an ex employee of this company as to the CPNI violations that this company constantly Commits.

My suggestion to you is not to go to any store. Only go to a corporate location.

0

1
2
3

AT&T Community Forums

hcabello

Is this CPNI email a phishing scam?