Thursday, June 10, 2010, 04:00 pm PT (07:00 pm ET)
FBI investigating AT&T security breach that revealed iPad owner emailsThe Federal Bureau of Investigation said Thursday that it has begun a probe into an AT&T security breach that exposed the email address of over 100,000 registered iPad owners.
"The FBI is aware of these possible computer intrusions and has opened an investigation to address the potential cyber threat," FBI spokesman Jason Pack said.
The move comes one day after AT&T acknowledged that a security flaw on its website made it possible for hackers to query its database and uncover the email addresses of customers who had registered to use its mobile broadband service on their iPhone 3G.
"This issue was escalated to the highest levels of the company and was corrected by Tuesday," the carrier said. "We are continuing to investigate and will inform all customers whose e-mail addresses may have been obtained."
The attack on AT&T's web servers resulted in at least 114,000 iPad 3G users' emails being leaked to Goatse Security hackers when batches of iPad ICC-IDs were entered via specially formatted HTTP requests.
The group automated requests of the email address information for a wide swath of ICC-ID serial numbers using a script. Although the exploit revealed the addresses of several prominent government and corporate officials, no other information was revealed as part of the breach.
A representative for Goatse Security told the Wall Street Journal that it 'hasn't heard from law enforcement and that it didn't do anything illegal, so doesn't see why it would.'
On Topic: AT&T
- AT&T now offers discounted monthly service for contract-free data sharing customers
- AT&T sees 200% year over year increase in activations for iPad Air launch
- AT&T unveils $5 'data day passes' for cellular-capable iPads and other tablets
- J.D. Power ranks Apple's iPhone best on AT&T, Verizon in satisfaction survey
- AT&T does away with per-device data plans for new customers