Between the Lines

Larry Dignan, Andrew Nusca and Rachel King
Home / News & Blogs / Between the Lines

Report: iPad owners revealed through AT&T security hole

By | June 9, 2010, 3:43pm PDT

Summary: Reports are surfacing that a security breach exposed the e-mail addresses of 114,000 iPad owners, including some big names in Washington. And while any breach would be newsworthy, it’s hard to get riled up over this thinly-sourced report.

A buzz of sorts is brewing over a Gawker Media report that says an AT&T security hole reportedly revealed the e-mail addresses of 114,000 iPad owners. The sourcing on the Gawker report is thin but the New York Times posted on its Bits blog that AT&T - which is reportedly the weak link that compromised the information - is aware of the issue and will respond soon.

Credit: Gawker Media

Credit: Gawker Media

The Gawker report offers some details about the breach, which allowed a not-so-mainstream security group called Goatse Security, to obtain the information. Through the data search, it identified 114,000 owners of the iPad 3G , including military officials, Senate and House staffers, as well as people at NASA, the Justice Department and Department of Homeland Security. It also reportedly exposed the email addresses of execs of the New York Times, Dow Jones, Viacom, Time Warner, News Corp. and Hearst, as well as bankers and venture capitalists.

The report also found that the group obtained an ID number - called the ICC-ID - that the iPads use when they communicate over the AT&T network, though it was unclear what that information could be used for.

Again, the sourcing is very thin on this report - so take that into consideration as you read more about it. And I also tend to raise an eyebrow because the headline uses the sensationalistic “Apple’s Worst Security Breach” when, if you really think about it, the breach - if, in fact, that’s what it is - would be AT&T’s, not Apple’s.

I don’t mean to dilute the significance of any breach, whether AT&T’s or Apple’s. But I have to admit that I’m having trouble getting riled up over someone finding 114,000 e-mail addresses. Social security numbers and bank account numbers would be different but e-mail addresses are not hard to track down or just plain figure out.

What I would really want to know - given the volume of government officials whose official work e-mail addresses were found, instead of their personal Yahoo or Gmail addresses - is exactly who paid for all of these iPads that are reportedly in the hands of so many people in Washington.

Last time I checked, the iPad was a pretty expensive device, especially for government agencies that probably have better uses for government dollars other than to buy iPads.

As we come across more details - that is, official statements from any of the involved parties - we’ll update this post.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Between the Lines”

Topics

Gawker Media, Purchasing & Procurement, E-mail, Blogging, Strategy, Viruses And Worms, Security, Business Operations, Online Communications, Internet, Management, Sam Diaz

Sam has been a technology and business blogger for more than 18 years.

Disclosure

Sam Diaz

Sam Diaz has nothing to disclose.

Biography

Sam Diaz

Sam has been a technology and business blogger, reporter and editor at ZDNet, the Washington Post, San Jose Mercury News and Fresno Bee for more than 18 years. He's a member of the National Association of Hispanic Journalists and a graduate of California State University, Fresno.

Talkback Most Recent of 10 Talkback(s)

  • RE: Report: iPad owners revealed through AT&T security hole
    Great!!! thanks for sharing this information to us!
    seslisohbet seslichat
    ZDNet Gravatar
    yarinsiz
    13th May
  • RE: Report: iPad owners revealed through AT&T security hole
    @yarinsiz What he's saying is having the source makes attacks faster to spread, what he isn't saying is that THERE ARE MORE ATTACKS POSSIBLE.

    It's sort of tangential to the 'is it safer' question.

    If there are far fewer successful attacks because the code is reviewed better. or the attacks are far more minor, then it follows that open source is better, even if attacks take 3 days less to spread.
    ZDNet Gravatar
    Arabalar
    5th Aug
  • RE: Report: iPad owners revealed through AT&T security hole
    Again, the sourcing is very thin on this accessmedicalbooks from this we cartecampus to get the internetparalaevangelizacion will have any pcloshwdb that can be estudielenco from report.
    ZDNet Gravatar
    gorians
    15th Sep
  • RE: Report: iPad owners revealed through AT&T security hole
    @yarinsiz Also, Microsoft has already committed to owning OS updates for WP7. They've adoped a completely new strategy since Windows Mobile. Handset makers and wireless carriers will no longer get to dictate which phones receive OS upgrades. Based on how well Microsoft treated Zune owners over the years.
    ZDNet Gravatar
    Arabalar
    8th Aug
  • RE: Report: iPad owners revealed through AT&T security hole
    @yarinsiz That is really a big question. Google's servers are the heart of Google's business. And it has long been a FEATURE, a FEATURE, not a LOOPHOLE, that one could privately modify the GPL code they use to run their business. Of course web applications are obviously SaaS. But where does one draw the line between those applications and the servers that host them? For example, take an insurance company running open source on their back end servers. At some point they decide to put a customer facing front end on those servers so that customers can access their accounts over the Net. Does that suddenly make that whole kaboodle Saas? If so, I am not sure I am comfortable with AGPL. In fact, I am not sure I am comfortable with this concept anyway since it undercuts one of the few provisions that make GPL software highly attractive to businesses that are not engaged in reselling the software itself. It really compromises the spirit of the GPL in some ways.
    ZDNet Gravatar
    arabaoyunlari@...
    11th Aug
  • RE: Report: iPad owners revealed through AT&T security hole
    These were white hat sohbet hackers (good guys) that discovered chat . But who else from the Black Hat side discovered first? .....yeah most likely people who bought 3G iPads at the very least will get spam'd out of their minds!

    But if the dark side of the hacker kingdom got this info izlesene Safari zero day exploits have been saved just for such an occasion. Why in the world do you think the FBI jumped on this so quickly for an portal investigation? Because many in the DOJ, NSA, Army, etc have iPads with names, email addresses and which specific iPad they owned breached!

    ICC-ID is a unique identifier of every single iPad forum device!
    By finding one of the first number sequences, they can then just punch in a list of consecutive units. Feed them into the chat sohbet server hole and hit a hacker jackpot of info that at the very least can be sold. YOUR Info if you were fool enough to buy one. All linked forever after by your AT&T Account Email address and your real name. So it just being an email address is a sohbet odalari... O'shizt! lol...

    No doubt they should be having all their customers change their email address at least. Apple no doubt was involved in setting up AT&T's Prison Garden Walled iPad Servers. In that case they are responsible even in their own EULA stating that Apple will not give your private information to anyone!
    ZDNet Gravatar
    cstrathmore
    30th May
  • RE: Report: iPad owners revealed through AT&T security hole
    more powerful then stand-alone options. This will drive open standards, domestic & international commerce, and innovation further pembe maske energy balance oyna oyunu moliva orjin krem tutune sonthen any of us could ever imagine. Kudos to IBM's LotusLive and Ariba for breaking down the barriers in this web 2.0 world!
    ZDNet Gravatar
    gaberdiye03
    20th Jun
  • RE: Report: iPad owners revealed through AT&T security hole
    Rather helpful likewise as uncomplicated to know. Attempting to get out a great deal more these kinds mulberry bags of writeups!! Do you have a myspace?
    ZDNet Gravatar
    jackson1984-24316069205748857739440257893812
    11th Oct
  • RE: Report: iPad owners revealed through AT&T security hole
    I observed your online world nfljerseys website in Google few moments inside the prior, as well as excellent information is, that is definitely it I accustomed to be trying to find out the prior weeks, several many thanks
    ZDNet Gravatar
    tomlin21-24319035676893835085146735905770
    11th Oct
  • RE: Report: iPad owners revealed through AT&T security hole
    Microsoft Exchange that is past its end-of-life support date, making spam, troll-management and synchronization difficult. Company officials also are playing up the new Web-based forums??? ability to provide centralized searchable content and to highlight the contributions of designated experts.
    http://www.cambalkon.gen.tr
    http://www.bagdatgelinlik.com
    http://www.anadoludesign.com
    http://www.terapiuzmani.com
    http://www.dermaturk.com.tr
    http://www.ilgazhacihasan.com
    ZDNet Gravatar
    skywin
    26th Oct

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources