Madshrimps Forum Madness

Madshrimps Forum Madness (http://www.madshrimps.be/vbulletin/)
-   WebNews (http://www.madshrimps.be/vbulletin/f22/)
-   -   iPad 3G user e-mail addresses leaked by AT&T servers (http://www.madshrimps.be/vbulletin/f22/ipad-3g-user-e-mail-addresses-leaked-t-servers-72763/)

jmke 10th June 2010 17:19

iPad 3G user e-mail addresses leaked by AT&T servers
 
At least 114,000 e-mails addresses and ICC-IDs were leaked by a security hole in AT&Ts servers, according to a Valleywag report. The e-mail addresses of numerous government and military officials as well as many Fortune 500 CEOs were among those revealed in the leak.

A group calling itself "Goatse Security" revealed the flaw to Valleywag after it had used the flaw to harvest thousands of e-mail addresses. AT&T has since closed the hole, but the group said that the flaw may have been exploited by other hackers who knew how the flaw worked before AT&T fixed it.

A script on AT&T's servers was designed to return an iPad 3G user's e-mail address when presented with a unique ICC-IDa serial number embedded in the microSIM that identifies a particular iPad to AT&T's cellular network. Goatse Security then guessed a range of valid ICC-ID numbers from some that had been published online (available in screenshots of the Settings app, for instance), and used those to mine AT&T's servers for e-mail addresses.

http://arstechnica.com/apple/news/20...camp aign=rss


All times are GMT +1. The time now is 18:27.

Powered by vBulletin® - Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO