Attack on AT&T's website exposes 114,000 Apple iPad owners' email addresses
by Tarinder Sandhu
on 10 June 2010, 11:38
Tags:
Apple (NASDAQ:AAPL),
AT&T
Quick Link: HEXUS.net/qayno Add to My Vault: Please log in to view Printer Friendly Layout |
|
Engineered by Goatse Security by running a script on AT&T's website and exposing email addresses by inputting guessed-at ICC IDs - SIM card identifiers - and then sending requests via an iPad-style 'user agent' header, the hacking group managed to harvest the email addresses of high-profile early adopters of the iPad 3G, paving the way for malicious spam.
Gawker reports that accounts at 'Google, Amazon, Microsoft and AOL, Goldman Sachs to JP Morgan to Citigroup to Morgan Stanley, along with dozens of venture capital and private equity firms' were compromised. What's more, President Obama's chief of staff's email address is believed to be part of mega-haul. No other
AT&T has since acknowledged the leak and confirmed that no other details were exposed, but Apple itself, probably fuming at AT&T, is yet to comment.