AT&T fined $25 million by FCC over customer data breaches to obtain phone unlock codes
For nearly six months, between November 2013 and April 2014, off-shore call centers for AT&T accessed customer information, including social security numbers and other account data, and then sold the information to third-parties. The breaches were being made without authorization, and occurred at call centers in Mexico, Colombia, and the Philippines. In all, more than 280,000 US-based customers’ records were accessed.
That data was sold to parties that would use that information to get the unlock codes for AT&T mobile phones. The FCC’s enforcement bureau initially began investigating the data breaches in Mexico, and later discovered the other problem areas during the investigation. Since it was AT&T’s responsibility to maintain Customer Proprietary Network Information (CPNI), the FCC placed the burden on the carrier as the investigation progressed.
source: FierceWireless
Things that are NOT allowed: