AT&T email accounts infiltrated for crypto theft

TechCrunch reports that AT&T email accounts have been compromised by an unknown cybercrime operation, which has leveraged the infiltrated accounts to steal cryptocurrency assets. Attackers were noted by a tipster to have secured access to a portion of the telecommunications firm's internal network that enables the creation of mail keys for their users, allowing them to leverage email apps to access the account of their targets and later replace passwords for cryptocurrency wallets and other services. Approximately $15 million to $20 million worth of cryptocurrency have been stolen by the hackers, according to the tipster, who also offered a list of people allegedly impacted by the attacks. Meanwhile, a screenshot of the hackers' Telegram group chat included claims of compromising AT&T's complete employee database but the lack of a certificate for accessing the company's VPN servers. However, AT&T refuted that its internal company systems have been compromised, with company spokesperson Jim Kimberly noting that API access had been used to facilitate the attacks.