Millions of AT&T customers affected by the high-profile data breaches of 2019 and 2024 may now qualify for financial compensation from a newly approved $177 million settlement fund. These two breaches exposed sensitive personal information and communication records, prompting numerous class-action lawsuits and a multi-year legal process that has now entered the claims stage.
According to court filings, the settlement allocates $149 million to victims of the 2019 breach, which compromised the identities of nearly 51 million individuals, and $28 million to customers affected by the 2024 breach, which involved the theft of call and text metadata. Eligible customers may receive reimbursements of up to $7,500 across both settlement classes by filing valid claims.
The settlement administrator, Kroll, has begun sending email notices with claim IDs, and millions of former and current AT&T customers are now checking their eligibility to secure their share of the payout.
Table of Contents
AT&T Settlement Divided into Two Classes
The settlement distinguishes between the two breaches because each exposed different types of data and carried different levels of risk. The 2019 breach involved highly confidential information, including names, dates of birth, and Social Security numbers. Data tied to identity theft typically results in higher long-term exposure, which is why the settlement allocates the largest share $149 million, to this class.
The 2024 breach occurred when hackers infiltrated AT&T’s secure cloud environment through third-party provider Snowflake. This incident did not include customer names but exposed large quantities of call and text metadata, affecting nearly the entire subscriber base. While metadata is less sensitive than identity data, the breach raised major privacy concerns due to its scale.
Both incidents triggered federal investigations and multiple lawsuits alleging AT&T failed to implement necessary data protection measures. Law enforcement later arrested the individuals believed responsible for the 2024 breach, though litigation stemming from both attacks continued until the settlement was negotiated.
AT&T customers have two weeks left to claim up to $7,500 in data breach settlement
Millions of consumers’ personal information was exposed by a pair of past data breaches that weren’t disclosed until 2024, leading the phone company to be court-ordered to pay out $177 million. pic.twitter.com/Q3IHqOEycR
— SAY CHEESE! 👄🧀 (@SaycheeseDGTL) December 1, 2025
Eligibility Requirements for Claimants
Any current or former AT&T customer whose data was compromised in either breach may be eligible for compensation. Individuals included in the settlement classes are now receiving notice emails from attsettlement@e.emailksa.com, containing the class member ID required to file a claim.
Customers who did not receive an email but believe their data was affected may verify eligibility through the settlement website or by calling (833) 890-4930. Because the 2019 dataset has been circulating online for years, many long-term customers may still qualify, even if they have not used AT&T services recently.
Eligibility applies separately to each breach. Therefore, individuals whose data appears in both compromised datasets may file two independent claims, increasing their total potential compensation.
Compensation Levels Under the Settlement
The settlement offers both reimbursement options and cash payments. For the 2019 breach, customers may seek reimbursement of up to $5,000 for financial losses, subject to documentation. These losses can include fraudulent charges, identity recovery costs, or expenses linked directly to the misuse of their stolen information.
Those without financial losses may still qualify for cash payments. These payments are divided into:
- Tier 1: For individuals whose Social Security numbers were compromised
- Tier 2: For those whose personal data did not include an SSN
Tier 1 payments will be five times as large as Tier 2 payments, but the final dollar amounts will depend on the total number of approved claims.
For the 2024 breach, reimbursement is capped at $2,500. Since the breach involved communication metadata rather than full identity details, compensation levels are comparatively lower. Standard cash payments will still be issued to all eligible claimants within this class.
Individuals affected by both breaches may potentially receive up to $7,500 by filing separate claims—$5,000 from the 2019 reimbursement category and $2,500 from the 2024 reimbursement category. Importantly, documentation cannot be reused for both reimbursement claims; each must reflect a unique, breach-specific loss.
Settlement Breakdown Table
| Breach Year | Estimated Users Affected | Data Exposed | Settlement Allocation |
|---|---|---|---|
| 2019 | ~51 million | Names, SSNs, DOBs | $149 million |
| 2024 | Nearly all AT&T users | Call and text metadata | $28 million |
How to File a Settlement Claim
Claims must be filed online through telecomdatasettlement.com, the official portal operated by the settlement administrator. Applicants begin by entering their class member ID, then verify their identity using their email address, AT&T account number, or full legal name.
Claimants seeking reimbursement must upload supporting documents. This may include receipts, financial statements, fraud reports, or other detailed records showing losses tied to the breach. Each document must clearly demonstrate the financial harm incurred.
Once submitted, applicants receive a confirmation number, which should be kept for reference. Additional verification may be required if Kroll needs further information during its review.
What Claimants Should Remember
Claims must be submitted by the court-approved deadline, which will appear on the official settlement website. Because millions of people were affected, timely filing is essential to avoid missing out on compensation.
Applicants should also carefully review settlement notices and ensure that documentation is complete, as incomplete or inconsistent claims may delay processing.
Frequently Asked Questions
What is the maximum payout I can receive from the AT&T settlement?
An individual can receive up to $7,500 if they qualify for reimbursements in both the 2019 and 2024 settlement classes. Cash payments without documentation will be lower and depend on the number of claims filed.
Do I need a class member ID to file my claim?
Most applicants will receive a class member ID via email or mail. If you did not receive one, you may still verify your eligibility using the contact form on the settlement website or the official helpline.
Can former AT&T customers also file a claim?
Yes. Anyone whose data appeared in the compromised datasets—regardless of whether they currently use AT&T services—may be eligible.
What documents are required for reimbursement claims?
Documentation may include bank statements, transaction reports, credit restoration invoices, or any other records clearly showing financial losses related to the breach. Each reimbursement claim must use unique documentation tied to the specific breach.
Where do I submit my claim?
All claims must be submitted online at telecomdatasettlement.com, the official settlement administration portal. Claim forms are not accepted through email or physical mail unless specified by the administrator.