AT&T Settlement Deadline December 18, Claim Up to $7,500 Through Kroll Administration Before Time Runs Out

ByAll About Lawyer Reading Time: 14 minutes

AT&T customers affected by two massive 2024 data breaches have until December 18, 2025 to file claims for compensation up to $7,500 through Kroll Settlement Administration. The $177 million settlement resolves lawsuits stemming from breaches that exposed personal data of 73 million customers. The original November 18 deadline was extended one month, giving affected consumers a final chance to secure their share of the settlement fund.

Critical Information:

  • Claim Deadline: December 18, 2025 (online submissions and postmarked mail)
  • Maximum Payout: $7,500 for customers affected by both breaches
  • Settlement Amount: $177 million total
  • Administrator: Kroll Settlement Administration LLC
  • Final Approval Hearing: January 15, 2026

What Is the AT&T Settlement?

AT&T reached a proposed $177 million settlement following two data breaches disclosed in 2024. The settlement covers the AT&T 1 Data Incident announced March 30, 2024, and the AT&T 2 Data Incident announced July 12, 2024.

The first breach affected 73 million current and former AT&T account holders whose information—including birth dates and Social Security numbers—was found in a dataset on the dark web. This data included addresses, social security numbers, birthdates, passcodes, billing numbers and phone numbers dating as far back as 2019 or earlier.

The second breach involved hackers unlawfully downloading AT&T data from a third-party cloud platform, exposing the records of calls and texts of nearly all AT&T cellular customers. This breach covered call and text records from May through October 2022, and a small subset from January 2, 2023.

AT&T disclosed its call logs were copied from its workspace on a Snowflake cloud platform covering about six months of customer call and text data from 2022.

AT&T Settlement Deadline December 18, Claim Up to $7,500 Through Kroll Administration Before Time Runs Out

Understanding Kroll Settlement Administration

Kroll Settlement Administration is the settlement administrator for the AT&T data incident settlement and has been notifying people about how they can get money back if they were involved in the data breaches.

Kroll serves as a neutral third-party administrator appointed by the court to manage the settlement process. Kroll provides website and database design services that support each step of the class action claims administration process, with proprietary technology platforms managed by in-house IT experts who develop secure and protected databases.

Kroll’s Responsibilities in the AT&T Settlement:

  • Processing and validating claim forms from settlement class members
  • Managing the settlement fund as escrow agent
  • Distributing notices to eligible class members
  • Operating the settlement website (telecomdatasettlement.com)
  • Providing toll-free support at (833) 890-4930
  • Calculating and distributing payments to approved claimants
  • Reporting to the court on settlement administration progress

Kroll’s in-house services, coupled with industry-leading security standards and proprietary technology platforms, provide clients with peace of mind that cases will be handled with expert oversight. The company maintains internationally recognized information security controls and achieved global standard ISO 27001 for Information.

Claim Filing Deadline: December 18 Is Your Last Chance

The claim submission deadline was extended based on the Court’s October 3, 2025 Order. The original November 18 deadline was pushed back a month to December 18.

Critical Deadlines:

  • December 18, 2025: Final deadline to submit claims (online or postmarked mail)
  • November 17, 2025: Deadline to opt-out or file objections (already passed)
  • January 15, 2026: Final approval hearing at 9:00 a.m. CT

If you miss the deadline and choose to do nothing, you will not receive any benefits from the settlement. Once the December 18 deadline passes, you lose your right to compensation even if you were directly affected by the breaches.

Who Is Eligible to File a Claim?

Persons in the United States whose data elements were included in the AT&T 1 Data Incident announced March 30, 2024, and/or account owners or line or end users whose data elements were involved in the AT&T 2 Data Incident announced July 12, 2024, may be eligible.

AT&T 1 Settlement Class (March 2024 Breach): All living persons in the United States whose data elements—including names, addresses, telephone numbers, email addresses, dates of birth, account passcodes, billing account numbers, and Social Security numbers—were included in the breach.

AT&T 2 Settlement Class (July 2024 Breach): AT&T account owners or line or end users whose AT&T 2 data elements were involved in the incident. Customers of MVNOs that use the AT&T network are considered line or end users and are part of the AT&T 2 Settlement Class.

Overlap Settlement Class Members: People who were part of both breaches are referred to as Overlap Settlement Class Members and may claim from both settlement funds, potentially receiving up to $7,500 total.

If you are not sure whether you are included in the settlement, you may call (833) 890-4930 with questions.

Compensation Amounts Available

The settlement divides into two separate funds. The first breach class is backed by a cash fund of roughly $149 million, while the second breach class is backed by about $28 million.

AT&T 1 Settlement Class (March 2024 Breach) – Up to $5,000

Each AT&T 1 Settlement Class Member may submit a claim for a Documented Loss Cash Payment of up to $5,000 for losses that occurred in 2019 or later, upon presentation of documentation that the losses are fairly traceable to the breach.

Alternative Tier Cash Payments:

  • Tier 1 Cash Payment: Members who had their Social Security Number included in the March incident are eligible for Tier 1 Cash Payments, which are five times the amount of a Tier 2 Cash Payment
  • Tier 2 Cash Payment: For members whose other data was exposed but not Social Security numbers

Tier Cash Payments are pro rata shares of the AT&T 1 Net Settlement Fund cash remaining after payment of Settlement Administration Costs, Attorneys’ Fees, Costs, and Service Awards.

AT&T 2 Settlement Class (July 2024 Breach) – Up to $2,500

Each AT&T 2 Settlement Class Member may submit a claim for a Documented Loss Cash Payment of up to $2,500 for losses that occurred on or after April 14, 2024, upon presentation of documentation that the losses are fairly traceable to the breach.

Alternative Tier 3 Cash Payment: As an alternative to a Documented Loss Cash Payment, account owners may submit a claim for a Tier 3 Cash Payment, which is a pro rata share of the July incident cash after payment of costs.

Total Maximum Payout

Those affected by both data breaches could receive up to $7,500 in compensation—$5,000 from the first breach and $2,500 from the second breach.

Important Note: The amount of the Net Settlement available for distribution is unknown and will be based upon the amount of Settlement Administration Costs, attorneys’ fees, costs, Service Awards, and the number of Valid Claims received. Your actual payment may be less than the maximum amounts listed depending on the total number of claims filed.

How to File a Claim Through Kroll

Go to the official settlement website telecomdatasettlement.com, the site managed by the settlement administrator Kroll Settlement Administration LLC.

Step-by-Step Filing Process

Online Filing:

  1. Visit www.telecomdatasettlement.com
  2. Enter your Class Member ID (should have been mailed or emailed) or your AT&T account number/name to check eligibility
  3. Click “Submit Claim” in the top right of the website
  4. Choose your class (first incident, second incident or both)
  5. Complete the claim form with required information
  6. If claiming documented losses, attach supporting documentation such as receipts, bank statements, identity-theft costs, freezing of credit
  7. Submit the completed form by December 18, 2025

Mail Filing:

Customers can mail the form to AT&T Data Incident Settlement, c/o Kroll Settlement Administration LLC, P.O. Box 5324, New York, NY 10150-5324. Mail must be postmarked by December 18, 2025.

Required Documentation

For Documented Loss Cash Payments: All customers seeking payment must provide documentation to show that the losses they incurred are fairly traceable to the AT&T data breaches.

Acceptable documentation includes:

  • Receipts for credit monitoring services
  • Bank statements showing fraudulent charges
  • Identity theft recovery costs
  • Credit report freezing expenses
  • Bills for security services
  • Documentation of time spent resolving breach-related issues
  • Notices of identity theft
  • Police reports related to identity theft

For Tier Cash Payments: If you cannot document specific losses, you may still file for a Tier Cash Payment or Tier 3 payment depending on class. These require less documentation but result in pro rata payments that vary based on the number of claimants.

Getting Help with Your Claim

Customers should have received a notice with a confirmation code and notice ID, but can contact Kroll Settlement Administration at (833) 890-4930 for more information.

Email notices are being sent to Settlement Class Members from the domain [email protected]. If you are uncertain if the email you received is related to the settlement, please call (833) 890-4930 for additional information.

AT&T Settlement Deadline December 18, Claim Up to $7,500 Through Kroll Administration Before Time Runs Out

What Happens If You Miss the December 18 Deadline?

Missing the deadline has serious consequences for your compensation rights.

If you do nothing, you will not receive any benefits from this settlement. If the settlement is granted final approval and becomes final, you will not be able to start a lawsuit, continue with a lawsuit, or be part of any other lawsuit against Defendants based on any claim relating to the Data Incidents.

By missing the deadline, you:

  • Forfeit all rights to compensation from the settlement fund
  • Cannot file individual claims later
  • Remain bound by the settlement’s release of claims
  • Lose your opportunity to recover documented losses

The extension to December 18 represents the final opportunity. No further extensions have been announced, and the court has set this as the absolute deadline for claim submissions.

Settlement Terms Explained

Court Jurisdiction and Approval Process

The Honorable Judge Ada E. Brown of the United States District Court for the Northern District of Texas is overseeing this case captioned as In re: AT&T Inc. Customer Data Security Breach Litigation MDL Docket No. 3:24-md-03114-E.

The Court will hold a Final Approval Hearing on January 15, 2026, at 9:00 a.m. CT. At this hearing, the Court will consider whether the settlement is fair, reasonable, and adequate.

When Will Payments Be Distributed?

If the Court approves the settlement, there may be appeals from that decision and resolving them can take time. It also takes time for all claim forms to be processed. Settlement Class Member Benefits will begin after the settlement has obtained Court approval and the time for all appeals has expired.

If approved without appeals, payments will likely begin within 90 days, meaning most eligible customers can expect payouts by April 2026. However, appeals could delay distribution by six months or longer.

Release of Claims

Defendants and its affiliates will receive a release from all claims that could have been or that were brought against Defendants relating to the Data Incidents. Once you submit a claim, you’re waiving the right to sue AT&T for related issues to this case.

The release covers all claims arising from or related to the two data breaches, including:

  • Negligence claims
  • Breach of contract claims
  • Privacy violations
  • State and federal statutory violations
  • Common law claims
  • Any other claims relating to the incidents

Opting Out (Deadline Passed)

You have until November 17, 2025, to opt out of the settlement to preserve your right to file a separate lawsuit. This deadline has already passed. If you did not opt out by November 17, you are bound by the settlement terms and cannot pursue individual litigation.

Legal Framework and Precedents

Applicable Federal Statutes

The AT&T settlement implicates several federal consumer protection and privacy statutes:

Computer Fraud and Abuse Act (CFAA), 18 U.S.C. § 1030: Prohibits unauthorized access to computer systems and provides civil remedies for victims of data breaches.

Federal Trade Commission Act (FTC Act), 15 U.S.C. § 45: Prohibits unfair or deceptive acts or practices affecting commerce, including failures to maintain reasonable data security.

Telephone Consumer Protection Act (TCPA), 47 U.S.C. § 227: Regulates telecommunications and includes provisions relevant to consumer privacy and data protection.

State Law Claims

The consolidated litigation includes claims under various state laws:

  • State consumer protection statutes
  • State data breach notification laws
  • Negligence and negligence per se
  • Breach of implied contract
  • Unjust enrichment
  • Invasion of privacy

Multidistrict Litigation Consolidation

Following AT&T’s announcement of the AT&T 1 Data Incident, lawsuits were filed against AT&T in state and federal courts across the country. These cases were consolidated into multidistrict litigation (MDL) in the Northern District of Texas for coordinated pretrial proceedings.

MDL consolidation allows efficient resolution of related cases by:

  • Eliminating duplicative discovery
  • Preventing inconsistent pretrial rulings
  • Conserving judicial resources
  • Facilitating comprehensive settlements

Similar Data Breach Settlements

This settlement is one of the larger telecom-data-breach class settlements, and it underscores increasing consumer risk.

The AT&T settlement follows the pattern of major data breach settlements:

Equifax Settlement (2017 breach): $575 million settlement for breach affecting 147 million consumers, offering up to $20,000 in documented losses plus free credit monitoring.

Yahoo Settlement (2013-2014 breaches): $117.5 million settlement for breaches affecting 3 billion accounts, with payments up to $358 per claimant.

Target Settlement (2013 breach): $18.5 million settlement for breach affecting 41 million consumers, with individual payments ranging from $40-200.

Capital One Settlement (2019 breach): $190 million settlement for breach affecting 98 million consumers, offering documented losses up to $25,000.

These precedents demonstrate courts’ willingness to approve substantial settlements when companies fail to maintain adequate data security, particularly when breaches expose sensitive personal information like Social Security numbers.

Recent Developments and Current Status

Extension of Claim Deadline

Certain deadlines related to the settlement, including the Claim Deadline, Opt-Out Deadline, and Objection Deadline have been updated based on Court’s October 3, 2025 Order. The extension provides additional time for class members to gather documentation and submit claims.

AT&T’s Response

AT&T said in a statement: “We have agreed to this settlement to avoid the expense and uncertainty of protracted litigation,” adding that the company remains “committed to protecting our customers’ data and ensuring their continued trust”.

AT&T has denied any wrongdoing in the matter. The settlement does not constitute an admission of liability but rather represents AT&T’s decision to resolve the litigation without further court proceedings.

Impact on Telecommunications Industry

The AT&T breaches and resulting settlement highlight vulnerabilities in the telecommunications sector:

  • Third-party vendor risks (the second breach occurred on a Snowflake cloud platform)
  • Legacy data security systems
  • Inadequate monitoring of data repositories
  • Delayed breach discovery and notification

The settlement sends a clear message to telecommunications providers about the financial consequences of inadequate data security measures.

Implications for Affected Consumers

Protecting Yourself After a Data Breach

If your information was compromised in the AT&T breaches, consider these protective measures:

Immediate Actions:

  • File your settlement claim by December 18, 2025
  • Monitor your credit reports from all three bureaus
  • Place fraud alerts on your credit files
  • Consider a credit freeze
  • Watch for phishing attempts using your exposed information
  • Update passwords on all accounts
  • Enable two-factor authentication

Long-Term Monitoring:

  • Check bank and credit card statements regularly
  • Review credit reports annually
  • Monitor for suspicious account activity
  • Keep documentation of all breach-related expenses
  • Report suspected identity theft immediately

Tax Implications of Settlement Payments

Settlement payments may have tax consequences. Generally:

  • Payments for documented losses may be tax-free if they represent reimbursement of actual expenses
  • Pro rata payments without documented losses may be taxable income
  • Consult a tax professional for guidance specific to your situation
  • Kroll may issue tax forms (1099-MISC) for payments exceeding certain thresholds

Understanding Your Consumer Rights

This settlement demonstrates important consumer rights in data breach litigation:

Right to Notice: Companies must notify affected individuals when their personal information is compromised.

Right to Compensation: Consumers can seek damages for losses resulting from inadequate data security.

Collective Action: Class actions allow consumers to pool resources against large corporations.

Court Oversight: Settlements require court approval ensuring fairness to class members.

Frequently Asked Questions About the AT&T Settlement

How do I know if I’m included in the settlement?

Anyone in the United States who had their information or data accessed in the March 30, 2024 or the July 12, 2024 breaches are eligible to file a claim. If you received notice from Kroll, you’re likely included. You can verify eligibility by calling (833) 890-4930 or visiting telecomdatasettlement.com.

What if I didn’t receive a notice?

Not receiving notice doesn’t necessarily mean you’re ineligible. If you believe you were excluded or erroneously not notified, call the settlement administrator at (833) 890-4930. You can still file a claim if you believe you were affected.

Can I file a claim without documented losses?

Yes. If you cannot document specific losses, you may still file for a Tier Cash Payment or Tier 3 payment depending on class. These payments are calculated as pro rata shares of the settlement fund, though amounts will be lower than documented loss payments.

How much will I actually receive?

The amount of the Net Settlement available for distribution is unknown at this time and will be based upon the Settlement Administration Costs, attorneys’ fees, costs, Service Awards, and the number of Valid Claims received. Your payment depends on total claims filed and your payment category.

When will I get paid?

Even if the settlement is approved, there could be appeals that delay payments going out. If approved without any appeals, payments will likely begin within 90 days after the final approval hearing on January 15, 2026, potentially by April 2026.

What happens at the final approval hearing?

At the hearing on January 15, 2026, the Court will consider whether the settlement is fair, reasonable, and adequate. The Court will also rule on any motion seeking payment of reasonable attorneys’ fees and expenses for Class Counsel, as well as Service Awards for Class Representatives.

Do I need to attend the hearing?

You do not need to attend the Final Approval Hearing. Class Counsel will represent the settlement class. You or your own lawyer are welcome to attend at your expense, but it’s not required.

Can I still opt out or object?

No. The deadline to mail requests for exclusion or objections was November 17, 2025. These deadlines have passed. You can still file a claim, but you cannot opt out at this point.

What if I already have identity theft protection?

You can still file a claim for documented losses related to the breaches. Keep records of any expenses incurred due to the breach, including monitoring services you purchased, time spent resolving issues, or other out-of-pocket costs.

How do I prove my losses are “fairly traceable” to the breach?

Document losses occurring in the relevant timeframes: 2019 or later for the March breach, or April 14, 2024 or later for the July breach. Provide receipts, bank statements, credit monitoring bills, or other evidence linking your expenses to addressing consequences of the data exposure.

Take Action Before December 18

The December 18, 2025 deadline is absolute. Settlement Class Member Benefits will begin after the settlement has obtained Court approval and the time for all appeals has expired, but you must file your claim now to be eligible for any payment.

Your Action Checklist:

  1. Visit www.telecomdatasettlement.com immediately
  2. Gather your Class Member ID or AT&T account information
  3. Collect documentation of any losses you incurred
  4. Complete the claim form online or download for mail submission
  5. Submit your claim by 11:59 PM on December 18, 2025 (or postmark by that date)
  6. Keep confirmation of your submission
  7. Monitor your email for updates from Kroll

Contact Information:

  • Website: www.telecomdatasettlement.com
  • Phone: (833) 890-4930
  • Mail: AT&T Data Incident Settlement, c/o Kroll Settlement Administration LLC, P.O. Box 5324, New York, NY 10150-5324

Don’t let the deadline pass. Affected AT&T customers have a limited window to secure compensation from this historic $177 million settlement. File your claim today.

Disclaimer: This article provides general information about the AT&T data breach settlement and is not legal advice. For specific guidance about your situation, consult an attorney. Information is based on settlement documents and court filings current as of December 2025.

About the Author

Sarah Klein, JD

Sarah Klein, JD, is a licensed attorney and legal content strategist with over 12 years of experience across civil, criminal, family, and regulatory law. At All About Lawyer, she covers a wide range of legal topics — from high-profile lawsuits and courtroom stories to state traffic laws and everyday legal questions — all with a focus on accuracy, clarity, and public understanding.
Her writing blends real legal insight with plain-English explanations, helping readers stay informed and legally aware.
Read more about Sarah

Leave a Reply

Your email address will not be published. Required fields are marked *