If you’re a current or former AT&T customer, you may be eligible for part of a $177 million class action settlement the telecom giant has agreed to after a series of data breaches exposed the personal information of millions of users.
According to legal filings, the first breach occurred in 2019, when threat actors stole addresses, birthdates, Social Security numbers and other data belonging to 7.6 million current AT&T customers and 65.4 million former account holders.
In a 2025 class action lawsuit, plaintiffs alleged the perpetrators began selling the information on the dark web in 2021. One plaintiff claimed a CareCredit account opened in her name racked up approximately $12,000. Another reported being so inundated with spam calls and texts that she had to file a police report and change her number.
After first denying the breach, AT&T acknowledged the incident in March 2024.
Take action to protect your identity
Offers in this section are from affiliate partners and selected based on a combination of engagement, product relevance, compensation, and consistent availability.
Plans from $9 to $25 per month, billed annually
Protects against identity theft, financial fraud, spam calls, online theft, scam websites, viruses and malware. Offers VPN, 3-credit bureau monitoring, password manager and instant credit lock.
A second attack, announced in June 2024, involved hackers accessing phone numbers, call durations, cell site identification numbers and other data from “nearly all of AT&T’s wireless customers” during a six-month period in 2022.
AT&T has denied any wrongdoing in either case, telling CNBC Select in a statement that it opted to settle “to avoid the expense and uncertainty of protracted litigation.”
“We remain committed to protecting our customers’ data and ensuring their continued trust in us,” the company added.
Who is eligible for payment in the AT&T settlement?
There are two settlement classes: The first is composed of subscribers impacted by the cyberattack announced in March 2024. The second settlement class applies to customers affected by the breach announced in July 2024.
You could qualify for both settlement classes If you were impacted by both incidents, but you’ll need to submit two claims.
How much money can I get from the AT&T settlement?
According to Kroll Settlement Administration, which is managing settlement claims, if you can provide documentation that you suffered financial losses that are “fairly traceable” to the 2019 breach, you could be eligible for a payment of up to $5,000.
If you can’t document your losses, you’ll be eligible for a prorated share of the settlement after attorney and administrator fees are paid. Class members whose Social Security number was included in this breach are eligible for five times the payment of members whose private data was exposed but not their SSNs.
If you can provide documentation of losses relating to the second breach, announced in July 2024, there is a maximum payout of $2,500. Otherwise, you will be similarly eligible for a prorated share.
If you can document losses from both breaches, you could receive as much as $7,500.
When is the deadline to file a claim?
If you are eligible to be a class member, you must submit a claim online or by mail by Tuesday, Nov. 18, 2025.
If you don’t want to be part of the settlement or want to reserve your right to sue AT&T independently, you’ll need to submit a written notice by Oct. 17.
How do I file a claim in the AT&T data breach settlement?
Eligible class members can submit a claim at the Telecom Data Settlement website or print out and mail forms to:
AT&T Data Incident Settlement
c/o Kroll Settlement Administration LLC
P.O. Box 5324
New York, NY 10150-5324
If you received a notification about the settlement, you’ll need to include the Class Member ID that was included. If you believe you are eligible but didn’t receive notification, you can direct inquiries to 833-890-4930 or the settlement website. You may also write to the address listed above.
You can also request to have a Class Member ID resent. You’ll need to provide your full name and the email address or phone number associated with your AT&T account.
Any claims must be received or postmarked by the Nov. 18 deadline.
When will I receive payment?
The final approval hearing for the case is scheduled for Dec. 3, 2025. After attorneys are paid, the remaining funds will be distributed to impacted customers. AT&T says it expects the settlement to be approved before the end of the year.
What to do if you’re a victim of identity theft
The longer you wait to act, the more time hackers have to use your identity. So, take action as soon as you suspect your personal information has been compromised.
File reports with the police and the Federal Trade Commission, so that you’ll have supporting documentation if you need to challenge any charges or file an insurance claim. Document all your activities and conversations relating to the case.
Place a fraud alert with all three credit bureaus — it will let creditors know to verify any new credit requests made in your name. A basic fraud alert remains active for 90 days, but an extended alert rcan stay on your credit report for seven years.
In addition, contact any bank, credit card, or other business where you think fraudulent activity occurred in your name.
How to protect your data
AT&T is not alone in falling prey to threat actors. According to the Identity Theft Resource Center, more than 1,700 data breaches were reported in the first half of 2025, impacting over 165 million people.
There’s no foolproof way to protect your data, but there are steps you can take to protect your information and to respond to a cyberattack.
1. Pay close attention to cybersecurity incidents. Ignoring news about data breaches is the worst thing you can do. If you are a customer of a business that was targeted, search online for details about the incident and contact the company directly for further information.
Read any alerts you receive carefully and monitor your credit card statements for unusual transactions.
2. Check your credit reports. Some data breaches take a long time to become public knowledge. The first AT&T breach took place in 2019, for example, but wasn’t confirmed by the company until 2024. That’s why it’s smart to proactively review your credit reports for signs of suspicious activity.
- You can obtain free copies of your reports from each of the three major bureaus (Equifax, Experian, and TransUnion) once a year by signing up at AnnualCreditReport.com.
- CreditWise from Capital One provides free access to your TransUnion credit report and you can get a free credit report from Experian every 30 days. Equifax offers two free credit reports per year with myEquifax.
- For regular updates on all three reports, consider subscribing to a paid identity theft protection service like PrivacyGuard® or Experian IdentityWorks.℠
PrivacyGuard®
-
Cost
$9.99 to $24.99 per month
-
Credit bureaus monitored
Experian, Equifax and TransUnion
-
Credit scoring model used
-
Dark web scan
Yes, for Identity and Total Protection plans
-
Identity insurance
Yes, up to $1 million for Identity and Total Protection plans
Experian IdentityWorks℠
-
Cost
Basic: Free; Premium: 7-day trial, after $24.99 per month; Family: 7-day trial, after $34.99 per month
-
Credit bureaus monitored
1-bureau credit monitoring, alerts and reports: Experian, with Basic plan only and 3-bureau credit monitoring, alerts and reports: Experian, Equifax and TransUnion®, with Premium and Family plans only
-
Credit scoring model used
FICO® Score 8, with all plans
-
Dark web scan
-
Identity theft insurance
Yes, up to $1 million with all plans
*Identity Theft Insurance underwritten by insurance company subsidiaries or affiliates of American International Group, Inc. (AIG). The description herein is a summary and intended for informational purposes only and does not include all terms, conditions and exclusions of the policies described. Please refer to the actual policies for terms, conditions, and exclusions of coverage. Coverage may not be available in all jurisdictions.
3. Get a password manager
Password managers store your usernames, passwords and email addresses and protect them from unauthorized access. Beyond generating strong passwords and syncing them across devices, services like Keeper and Dashlane include additional benefits, like dark web monitoring, email masking and secure password sharing.
Keeper
-
Cost
Individual plan: $2.92 per month
-
Family plan: $6.25 per month
-
Business plan: $2.00 to $3.75 per month
-
Standout features
Allows importing from other password managers, adjusts auto-fill preferences for individual websites and allows for one-time password sharing
-
Offers free version
-
Availability
Available for web, desktop, and mobile devices.
-
Security features
Uses a zero-knowledge approach, government-standard AES-256 encryption, supports multi-factor authentication and biometrics, and performs quarterly third-party security penetration testing
Pros
- Securely share passwords and files
- Unlimited password storage
- Supports passkeys
- Fingerprint and Face ID login
- Password strength report
Cons
- Free version is limited to one device
- Less Intuitive Interface
- Dark web monitoring and file storage only available on paid plans
Dashlane
-
Cost
Individual plan: $4.99 per month, includes VPN
-
Family plan: $7.49 per month
-
Business plan: $8.00 per month
-
All prices are per month with annual billing selected
-
Standout features
The premium plan provides access to VPN, password health checker, dark web monitoring and allows you to securely store sensitive documents.
-
Offers free version
-
Availability
Available for web and mobile devices.
-
Security features
Uses a zero-knowledge approach, government-standard AES-256 encryption, multi-factor authentication, support for biometrics and has passed third-party security audits.
Pros
- Includes VPN in subscription
- MFA support
- Dark web monitoring
- Offers file storage
- Real-time phishing alerts
Cons
- Free version is limited to one device and 25 stored logins
- More expensive than some other competitors
- Lacks desktop app
4. Freeze your credit. Even if you’re not part of a recent data breach, freezing your credit can prevent anyone from opening a new account in your name. There is no effect on your credit score or existing accounts. You’ll need to request a freeze from all three credit bureaus and remember to unlock them when you want to apply for a credit card or loan or sign a lease.
You’ll need to provide personal information and answer questions to verify your identity. You’ll also have to create a PIN, which should be kept in a secure location.
Identity monitoring service Aura can also freeze your credit without requiring you to contact the credit bureaus. It also offers a range of other security features, including a password generator, email aliases, a VPN, robocall filters and malware protection.
AT&T settlement FAQs
Who is eligible to make a claim in the AT&T settlement?
Past and current AT&T customers who are eligible to make a claim should have received an email from attsettlement@e.emailksa.com with details on the settlement and a Class Member ID. If you believe you are eligible but didn’t receive notification, you can call 833-890-4930 or file an inquirry on the settlement website. You may also write to:
AT&T Data Incident Settlement
c/o Kroll Settlement Administration LLC
P.O. Box 5324
New York, NY 10150-5324
How much money can I get from the settlement?
If you can prove you suffered losses as a result of both data breaches, you could be eligible for as much as $7,500. If you have documentation of losses from the 2019 breach alone, the maximum payout is $5,000. For the second breach, the maximum is $2,500.
If you are a class member but can’t provide proof of financial loss, you are eligible for a prorated share of the settlement fund after attorney and administrator fees are paid.
When is the deadline to file a claim?
Eligible AT&T customers have until Nov. 18 to submit a claim. If you don’t want to be part of the settlement or want to reserve your right to sue AT&T independently, you’ll need to submit a written notice by Oct. 17.
A final approval hearing is scheduled for Dec. 3, 2025.
Subscribe to the CNBC Select Newsletter!
Money matters — so make the most of it. Get expert tips, strategies, news and everything else you need to maximize your money, right to your inbox. Sign up here.
Why trust CNBC Select?
At CNBC Select, our mission is to deliver high-quality service journalism and comprehensive consumer advice to our readers, enabling them to make informed financial decisions. Every cybersecurity article is based on rigorous reporting by our team of expert writers and editors. While CNBC Select earns a commission from affiliate partners on many offers and links, we create all our content independently of our commercial team and any outside third parties, and we pride ourselves on maintaining high journalistic standards and ethics.
Editorial Note: Opinions, analyses, reviews or recommendations expressed in this article are those of the Select editorial staff’s alone, and have not been reviewed, approved or otherwise endorsed by any third party.