Everest Ransomware Claims AT&T Careers Breach

Author

Taylor Hawes
October 27, 2025

🔎 Cyber Watch 🔎

Everest Ransomware Claims AT&T Careers Breach

In an unfolding incident, the ransomware group Everest ransomware claims it has breached the applicant and employee recruitment portal of AT&T (“AT&T Careers”), citing approximately 576,686 records in its listing.

 Key points:

  • The group says the dataset is locked behind a password and instructs a company representative to “follow instructions” before a four-day countdown ends. 

  • AT&T has not publicly verified this listing at the time of writing. 

  • The implication is that this may not be customer data but job-application/employee records—though the sourcing of that data remains unclear. 

  • The group is known for targeting corporate databases and extorting organisations

Key takeaway

Organizations should monitor recruitment-portal data flows, third-party vendor exposures, and ensure proper multi-factor authentication and anomaly monitoring for HR systems. In this case, the recruitment channel rather than the core customer system appears targeted, highlighting the importance of securing even ‘non-customer’ data stores.

🎙️ Tech Briefing On‑Air 🎙️

Security Now Discusses AWS Outage and New Threat Vectors

In this episode of Security Now, hosts Steve Gibson and Leo Laporte deliver a broad discussion of security issues.

Takeaways: 

  • The dramatic outage of Amazon Web Services (“AWS”) and how reliance on a single dominant cloud provider increases systemic risk. 

  • An analysis of how optical computer mice may be leveraged for covert collection of data (“listening in”) via their built-in sensors and firmware. 

  • A revelation that a substantial portion of geostationary satellite traffic remains unencrypted — an unexpected vector for interception. 

  • Discussion of legislative and policy matters, including the status of Texas SB2420 and modernisation of password policy by NIST.

The episode underscores two important themes: first, that infrastructure concentration (e.g., large cloud providers) creates amplified operational and security risk; second, that threat actors continue to exploit unexpected or overlooked vectors (firmware, optical devices, satellite comms). For IT decision-makers, the takeaway is to question assumptions about “invisible risk” in edge devices and supply/infrastructure dependencies.

🤝 Partner Intel 🤝

Fortra

Fortra, previously known as HelpSystems, has grown from its 1982 origins into a major force in cybersecurity and automation. The company’s offerings now cover data-loss prevention, compliance, and secure file transfer, supported by a long list of acquisitions. It serves regulated sectors such as healthcare, finance, and government, helping them manage data protection across hybrid environments. One of its flagship products, Digital Guardian, provides endpoint protection, network DLP, user-behaviour analytics, and compliance reporting. Fortra is best suited for organizations that require strong data-protection controls and automation across multiple platforms.

🤖 AI Runtime 🤖

Daniela Braga Joins European CEOs in AI Investment Push

Daniela Braga, founder of Defined.ai, has joined senior executives from major European tech firms in signing a CEOs’ declaration calling for more aggregated investment, regulation, and strategic alignment in AI and critical technologies across Europe.

Key points:

  • The signatories argue that despite considerable talent and research in Europe, the region lacks scale and a “truly concerted strategy” that unites public and private sectors. 

  • Attention is drawn to an annual estimated investment short-fall of about €800 billion, and a lack of EU-based unicorns above €100 billion valuation in the last 50 years. 

  • The call is for “…a more agile regulatory environment, and coordinated, ambitious, and scalable European investments.”

While this is framed in terms of AI and tech investment, the implications for cybersecurity are strong: an accelerating AI arms race means organizations must revisit their threat-modelling, data governance, algorithmic risk and AI-compliance programmes. European firms may gain regulatory and strategic advantages — but also face higher expectations around AI governance, explainability, and data protection.

📊 By the Numbers 📊

$1.3 million

U.S. federal prosecutors have charged Peter Williams, a former director at a government cybersecurity contracting firm, with allegedly selling trade secrets to a Russian buyer in exchange for $1.3 million.

🗳️ Your Monday Take 🗳️

Cast your vote on our weekly poll.

Which human-related issue poses the biggest challenge to your organization’s cybersecurity strategy today?

Login or Subscribe to participate in polls.

📩 We’ll share the results in the Friday issue.

Advertise with Comparitech
Does your business offer services or products in cybersecurity? Get your product seen by IT leaders and professionals.

Advertise with us →

Until Wednesday’s edition - Let’s keep that zero-day count at zero!