Email Addresses and SIM Identifiers of 114,000 AT&T iPad 3G Users Exposed

[GamecockMac]

If by "valid" you mean "completely anecdotal", then sure.

Yeah, let's see...

Troll: "Hey Steve...how's that AT&T exclusivity deal working out for ya?"

Me: Well, considering the iPhone has been a home-run success and has significantly impacted the company positively from a financial standpoint, it seems to be working out just fine.

Now you can call that anecdotal all you like, but it's also a simple statement of the facts on the ground. Troll asked a loaded (stupid) question, troll got his answer. Game over.

 

[VirtualRain]

if you click through, you will find that Gawker had the audacity to title the article "Apple's Worst Security Breach: 114,000 iPad Owners Exposed" when in fact it was AT&T and Apple had nothing to do with it.

MacRumors should not promote this kind of bull-**** by cross-linking to crap like this.

 

[FFArchitect]

Thanks AT&T.

 

[miles01110]

Troll: "Hey Steve...how's that AT&T exclusivity deal working out for ya?"

Me: Well, considering the iPhone has been a home-run success and has significantly impacted the company positively from a financial standpoint, it seems to be working out just fine.

Now you can call that anecdotal all you like, but it's also a simple statement of the facts on the ground. Troll asked a loaded (stupid) question, troll got his answer. Game over.

You're right. The appeal of the device itself has nothing to do with it. How could anyone point out the major holes in your shortsighted explanation? The nerve!

If you've been paying attention to the Apple/AT&T relationship through the eyes of their customers at all over the past three years it should be quite obvious that the iPhone is succeeding despite AT&T rather than because of it.

 

[dave1812dave]

Just more bad publicity for AT&T. Like they needed more!

 

[Peace]

This goes beyond the iPad .

Last night I got an email from AT&T telling me my account was frozen because someone tried to log into my account using one of my iPhone phone numbers. They tried several times until the account was locked. I called AT&T ASAP and they told me they didn't know who did it but they were using my iPhone number to try and log-in.

An hour later I went into my account and changed all the passwords and email addys.

Coincedence ? I don't think so.

 

[GamecockMac]

You're right. The appeal of the device itself has nothing to do with it. How could anyone point out the major holes in your shortsighted explanation? The nerve!

I'd continue to try to explain the simple concept at work here, but I don't have crayons and construction paper handy to draw you a picture.

 

[darkplanets]

I love the blatant, false lies embedded into the title. Brilliant. Subtle yet powerful. GJ Gizmodo, you probably got some e-tards who live on every word of yours all riled-up in anti-apple hate, since we know of course they can't read and comprehend English. With that said, it always sucks when there's a security breach, but hey, lets be honest; all your information is already out there. Everyone already has your email address.

 

[Matt-M]

So, I buy a Dell computer, connect to the net with Comcast, and then Comcast divulges my email address on their web site. This would be covered by Gawker as "Dell's Worst Security Breach"?

Get real.

 

[mogzieee]

This is why it is good, here in the UK for example, to have more than one 3G provider out there. We have four providers; Vodafone, 3, O2 and Orange... and if only one of those made a cock-up on the scale of AT&T's like this, the problem would be faaaaar less serious. A quarter less serious, infact.

 

[GeekLawyer]

if you click through, you will find that Gawker had the audacity to title the article "Apple's Worst Security Breach: 114,000 iPad Owners Exposed" when in fact it was AT&T and Apple had nothing to do with it.

It will be nice when Apple owns Gawker and can shut them down.

Sensationalist misleading headline is sensationalist, misleading.

 

[Papajohn56]

And you can hardly make the claim that it has significantly hampered their success. One could make the argument that they might have enjoyed greater success if they offered the iPhone on another carrier (like Verizon), but there is no direct proof of that.

Of course you can. Offering it across multiple carriers would benefit Apple, and on top of that, going with another network could have limited the bad news as a result of AT&T's ineptitude - but you're a USC person, you wouldn't understand. Go Clemson

 

[apfhex]

Wipe what exactly? The security whole was closed now but the users have been compromised already.

Dunno if this is what Dotcom2 was getting at, but when you're talking about wiping holes, well...

Just as I predicted! The very article MacRumors linked to is headlined "Apple's Worst Security Breach: 114,000 iPad Owners Exposed".

Since Monday I've noticed a slew of headlines like this for Apple related stuff on Gawker/Gizmodo. Not that they didn't do that sort of thing before, but it seems like they've upped it a bit.

 

[BC2009]

Ryan Tate/Gawker are just lashing out / More Illegal Activity

Let's face it, Ryan Tate is just lashing out because Steve Jobs spanked him in that email exchange a few weeks ago. What is funny is he opens with "another embarrassment" for Apple. Umm... that first embarrassment he refers to is likely going to land some of his Gawker buddies in prison. Keep it up Gawker.

What I want to know is why this "Goats Security" group did not simply notify AT&T rather than getting 114k+ emails and then sharing them with the world. Shouldn't the FBI be going after them?

Not only did they retrieve a huge number of names, they shared their script for doing so with others, and they shared that list of email addresses with others. Its not suppose to to work that way. What they did is a federal crime.

But I'm sure Gawker media will tell us that before they bought this story from them for $5000 that Goats tried calling AppleCare support and talked to a Level-1 tech to report the AT&T security breach.... right?

 

[WolfJLupus]

Spoofing? Not likely...

As long as they didn't also hack into the HLR and get the SIM's unique passcode they shouldn't be able to use the info they gathered to "spoof" ( make a clone/fake copy ) the devices. Because when they try to register into the cellular network it's not going to pass authentication without it. This is something only the HLR and the SIM has and is never transmitted. Though for pure 3g it may not be in a HLR, I'm not 100% sure, but it's going to have a similar setup none the less because that's one of the few things used to prevent "spoofing" in the cellular networks.

 

[cmaier]

Ah, AT&T. You really don't want us to love you, do you?

 

[mdriftmeyer]

Hey Steve...how's that AT&T exclusivity deal working out for ya?

Same crap with Verizon, T-Mobile, Sprint and more. They all have security holes.

 

[topmounter]

Wow Gawker, bitter much?


What a bunch of sorry-arse losers.




Now I'm just waiting for the news to hit that Gawker Media paid some Chinese Hacker to exploit the hole so they could report it

 

[ghostface147]

 

[marksman]

Wirelessly posted (Mozilla/5.0 (iPod; U; CPU iPhone OS 4_0 like Mac OS X; en-us) AppleWebKit/532.9 (KHTML, like Gecko) Version/4.0.5 Mobile/8A293 Safari/6531.22.7)

Ouch!

Is there really anything that can be done with this info? all I can think of is a spamfest on the email accounts.

Here is the problem. The value of those email addresses to send spam to is very small. Worth a very little amount of money. What the people who took them did is a very serious crime. It is more than likely several of those addresses include one-of-a-kind email addresses set up for this account, which means it would become much, much easier to ultimately track down who stole the addresses.

Certainly not a very good risk/reward especially since the meager reward creates an evidence trail.

 

[angrytoothbrush]

how can they be absolutely sure these stop at the iPad... Is it possible they grabbed #'s from us iPhone users too?

 

[habubauza]

Yeah, let's see...

Troll: "Hey Steve...how's that AT&T exclusivity deal working out for ya?"

Me: Well, considering the iPhone has been a home-run success and has significantly impacted the company positively from a financial standpoint, it seems to be working out just fine.

Now you can call that anecdotal all you like, but it's also a simple statement of the facts on the ground. Troll asked a loaded (stupid) question, troll got his answer. Game over.

It's a good question, not a stupid one. How do you think he would answer? How do you think Apple shareholders would answer in the wake of a network security breach? I mean, it's At&t, so Apple stock should be fine, right? I think this would prove to be a catalyst to hasten the iPhone being made available on multiple carriers, including Verizon.

 

[spencers]

Why run this story? Gawker is a bunch of idiots that are still bitter about their WWDC Invite (or lack thereof!)

 

[womble2k2]

Time for Apple to take that exclusive carrier contract with AT&T to the shredder.

Phil

 

[cybaster]

gizmodo/gawker are really getting on my nerves recently.

+100000

dude, they make themselves look like the victim in the iPhone leak story, then they go all noble and talk about how they are protected from search and seizure since they are "journalists". And then go and write biased articles about how this is Apple's fault.

some GREAT journalism there....