Two charged with hacking AT&T for iPad user info

Evidence against two men includes purported internet relay chat conversations between the pair (above).

Two men were charged Tuesday with hacking into AT&T servers and stealing email addresses and other information of about 120,000 iPad users.

Andrew Auernheimer, 25, and Daniel Spitler, 26, each face one count of conspiracy to access a computer without authorisation and one count of fraud in connection with personal information. If convicted, they could receive a maximum sentence of 10 years in prison and a $500,000 fine.

Last June, Auernheimer told CNET News that members of his hacker group, Goatse Security, had uncovered a hole in AT&T's website used by iPad customers on the 3G wireless network. Spitler is accused of writing a script called the 'iPad 3G Account Slurper' and using it to harvest AT&T customer data via a brute force attack on the site. For more on this story, read Two charged in AT&T-iPad data breach on CNET News.