AT&T sues two over scheme to steal customer data

Share this article:
AT&T has accused two Utah men of carrying out a data mining scheme, using automatic dialing programs to harvest information from its customer database and costing the company more than $6.5 million.

In a complaint filed late last week in federal court in Dallas, AT&T and its subsidiaries named Phil Iverson and Chris Gose as the masterminds behind the fraud.

AT&T claims that over at least the past five years, the defendants used computerized auto-dialing programs to place hundreds of millions of phone calls to numbers they purchased from AT&T, according to the complaint.

The calls, however, were spoofed to make it appear like the calls were coming from other AT&T customer numbers, which tricked AT&T's systems into delivering caller ID name information stored in its customer database.

“By constantly adjusting and refining their data mining techniques, defendants have been able to launch a series of cyberattacks on and gain unauthorized access to AT&T's electronic [customer] database,” the complaint stated.

It also names a group of corporations as co-defendants, including Blue Skye, CCI Communications and Feature Films for Families.

Iverson and Goose directed or caused these companies to participate in the alleged fraudulent activities, AT&T contended. The masterminds purchased telecommunication services offered by the co-defendants to use as part of the scheme.

The defendants likely used the stolen caller ID data for telemarketing purposes, AT&T said in the complaint. The information has “considerable commercial value,” since matching name and number information for wireless subscribers is often not available in public directories.

AT&T added that it lost roughly $6.5 million from processing the millions of spoofed calls and caller ID searches, as well as from deploying technologies to detect and stop the activity. 

The telecom giant is seeking actual and punitive damages and asked the court to bar the defendants from conducting additional data mining fraud.

Neither Iverson nor Goose could be reached for comment.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

ShellShock vulnerability exploited in SMTP servers

Researchers at Trend Micro found that attackers were targeting Simple Mail Transfer Protocol (SMTP) servers to execute malicious code and an IRC bot.

Hackers grab email addresses of CurrentC pilot participants

Hackers grab email addresses of CurrentC pilot participants

Although the hack didn't breach the mobile payment app itself, consumer confidence may be shaken.

Operators disable firewall features to increase network performance, survey finds

Operators disable firewall features to increase network performance, ...

McAfee found that 60 percent of 504 surveyed IT professionals prioritize security as the primary driver of network design.