A federal judge has preliminarily approved a $177 million class-action settlement to resolve lawsuits tied to two large AT&T data breaches that exposed the personal information of hundreds of millions of people.
What happened and what’s in the settlement
– The two breaches occurred in 2019 and 2024. AT&T did not publicly acknowledge the 2019 incident until March 2024, weeks after investigators found customer data circulating on the dark web.
– The 2019 breach exposed sensitive details such as Social Security numbers, birth dates, and legal names, affecting 7.6 million current AT&T customers and 65.4 million former account holders. In response, AT&T reset passwords for current customers included in that breach.
– The 2024 breach involved access to phone records from 2022 for about 109 million US customers via Snowflake, AT&T’s cloud data warehouse. AT&T disclosed this breach in July 2024. Associates linked to the ShinyHunters group claimed responsibility for similar Snowflake attacks at other companies, and two people were later arrested in connection with AT&T’s incident.
– The settlement divides claimants into two classes corresponding to the two breaches. Those affected by both breaches may file claims for both.
How the settlement is split
– The 2019 breach class (AT&T 1 Data Incident) is slated to receive about $149 million.
– The 2024 Snowflake breach class (AT&T 2 Data Incident) is set to receive about $28 million.
– Claimants can participate in one or both classes, depending on which breach affected them. It is not yet clear if someone with proven losses from both breaches could receive the full combined amount, but the settlement language does not explicitly prohibit that possibility.
What counts as a valid claim and potential payouts
– For the 2019 breach, individuals who can prove a documented loss may receive up to $5,000. Those without documented loss may receive one of two tiered cash payments depending on whether their Social Security number was included in the breach.
– For the 2024 Snowflake breach, individuals who can prove a documented loss may receive up to $2,500. Those without proof of loss will receive a pro rata share of the remaining funds.
– Those affected by both breaches can file claims for both classes. While the exact total a person could receive isn’t definitively stated, there is nothing in the settlement documents that would prevent a combination of amounts across both breaches for someone with demonstrable losses.
How to file a claim
– The settlement is administered by Kroll Settlement Administration. Eligible class members can file claims online at telecomdatasettlement.com.
– A key detail: you’ll need a “Class Member ID,” which should have been sent to you by Kroll, typically via email. If you can’t locate the email, check spam folders or contact the settlement administrator.
– If you’re uncertain about your eligibility or did not receive a notification, you can call 833-890-4930 or write to:
AT&T Data Incident Settlement
c/o Kroll Settlement Administration LLC
P.O. Box 5324
New York, NY 10150-5324
– After obtaining a Class Member ID, you can complete the filing forms and document the losses you experienced from either or both breaches.
– The claims site has faced heavy traffic; security measures include a queue system to manage submissions. If online filing isn’t convenient, you can print and mail the completed claim forms for both breaches.
Important deadlines and submission details
– The deadline to file a claim is November 18, 2025. Mailed forms must be postmarked by that date.
– If you didn’t receive a notification or aren’t sure if you’re included, reach out to the settlement administrator for guidance.
What this means for AT&T customers
– This settlement provides a pathway for affected customers to be compensated for documented losses tied to two major data incidents. It also serves as a reminder of the importance of monitoring personal information after data breaches and of the ongoing scrutiny of corporate data security practices.
– The two breaches together affected a broad swath of AT&T customers, and the settlement attempts to address those harms with a structured compensation framework.
Additional notes and context
– AT&T disclosed the 2019 breach and then, in 2024, the Snowflake-based breach that impacted a vast portion of U.S. customers. Investigations and related legal actions culminated in the March 2025 settlement agreement.
– Public records also indicate law enforcement took action against individuals tied to the 2024 breach.
Summary and takeaways
– A $177 million settlement aims to compensate victims of AT&T’s 2019 and 2024 data breaches, with separate payouts for each incident.
– Eligible claimants must file by November 18, 2025, using either online or mail-in forms, and may need documentation of losses to maximize potential payments.
– For many affected customers, this settlement represents a defined, practical route to recoup some of the harms caused by the breaches, while underscoring the ongoing imperative for robust data protection.
Positive framing
– The settlement demonstrates that affected individuals can obtain compensation through formal processes and that regulators and the legal system are continuing to hold large companies accountable for data security and privacy.
If you’d like, I can also add a quick checklist for claim preparation or a brief explainer on how to gather proof of losses for a stronger case.