mailing list archives
follow-up: Hacker Found Guilty of Breaching AT&T Site to Obtain iPad Customer Data (fwd)
From: security curmudgeon <jericho () attrition org>
Date: Wed, 21 Nov 2012 11:25:25 -0600 (CST)
---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>
By Kim Zetter
A hacker charged with federal crimes for obtaining the personal data of
more than 100,000 iPad owners from AT&T?s website was found guilty on
Andrew Auernheimer, 26, of Fayetteville, Arkansas, was found guilty in
federal court in New Jersey of one count of identity fraud and one count
of conspiracy to access a computer without authorization.
The jury reached its verdict just hours after being sequestered.
Auernheimer tweeted to supporters that he expected the verdict and planned
Auernheimer and Daniel Spitler, 26, of San Francisco, California, were
charged last year after the two discovered a hole in AT&T?s website in
2010 that allowed anyone to obtain the e-mail address and ICC-ID of iPad
users. The ICC-ID is a unique identifier that?s used to authenticate the
SIM card in a customer?s iPad to AT&T?s network.
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list
Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.
- follow-up: Hacker Found Guilty of Breaching AT&T Site to Obtain iPad Customer Data (fwd) security curmudgeon (Nov 21)