AT&T sues two over scheme to steal customer data

Share this article:
AT&T has accused two Utah men of carrying out a data mining scheme, using automatic dialing programs to harvest information from its customer database and costing the company more than $6.5 million.

In a complaint filed late last week in federal court in Dallas, AT&T and its subsidiaries named Phil Iverson and Chris Gose as the masterminds behind the fraud.

AT&T claims that over at least the past five years, the defendants used computerized auto-dialing programs to place hundreds of millions of phone calls to numbers they purchased from AT&T, according to the complaint.

The calls, however, were spoofed to make it appear like the calls were coming from other AT&T customer numbers, which tricked AT&T's systems into delivering caller ID name information stored in its customer database.

“By constantly adjusting and refining their data mining techniques, defendants have been able to launch a series of cyberattacks on and gain unauthorized access to AT&T's electronic [customer] database,” the complaint stated.

It also names a group of corporations as co-defendants, including Blue Skye, CCI Communications and Feature Films for Families.

Iverson and Goose directed or caused these companies to participate in the alleged fraudulent activities, AT&T contended. The masterminds purchased telecommunication services offered by the co-defendants to use as part of the scheme.

The defendants likely used the stolen caller ID data for telemarketing purposes, AT&T said in the complaint. The information has “considerable commercial value,” since matching name and number information for wireless subscribers is often not available in public directories.

AT&T added that it lost roughly $6.5 million from processing the millions of spoofed calls and caller ID searches, as well as from deploying technologies to detect and stop the activity. 

The telecom giant is seeking actual and punitive damages and asked the court to bar the defendants from conducting additional data mining fraud.

Neither Iverson nor Goose could be reached for comment.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

Reported breaches involving zero-day bug at JPMorgan Chase, ...

Hackers exploited a zero-day vulnerability and gained access to sensitive information from JPMorgan Chase and at least four other financial institutions, reports indicate.

Data on 97K Bugzilla users posted online for about three months

During a migration of the testing server for test builds of Bugzilla software, data on about 97,000 Bugzilla users was inadvertently posted publicly online.

Chinese national had access to data on 5M Arizona drivers, possible breach ...

Although Lizhong Fan left the U.S. in 2007, the agencies responsible for giving him access to Americans' personal information have yet to disclose the details of the case to the public.