AT&T allows hijacking of iPad email address

AT&T allowed hacking email addresses

By Mike Masnick, TechDirt – Apparently, a security vulnerability in the way AT&T set up its network allowed hackers to capture the email addresses of 114,000 iPad owners.

The breach was pretty basic stuff: if you fed an iPad ID number to a script that was publicly available on AT&T’s website, it returned to you the email address associated with that ID. The hackers quickly set to testing out tons of likely IDs, and got back all those email addresses, including those of top execs at a bunch of big media companies, such as the CEO of the NY Times, CEO of Time, Inc., the President of News Corp, the CEO of Dow Jones and New York City mayor Bloomberg.

Oh yeah, also a bunch of government emails: “Rahm Emanuel and staffers in the Senate, House of Representatives, Department of Justice, NASA, Department of Homeland Security, FAA, FCC, and National Institute of Health, among others.” AT&T issued the expected “oops” statement soon after this was exposed.