Charges have been filed against two people, Daniel Spitler and Andrew Auernheimer, who allegedly stole and published email addresses and other data from approximately 120,000 iPad users, according to Reuters. They’ve been each charged with one count of fraud and one count of conspiracy to access a computer without authorization.
The incident occurred last year when a group called Goatse Security said it exploited a weakness in AT&T’s 3G network and obtained the data, which included information from politicians, celebrities, and other high-profile individuals. DailyTech noted that Mr. Auernheimer is connected to Goatse, which has some members living in the United States and others residing elsewhere.
While the incident has been called a “hack” by many, DailyTech noted: “The info came from an AJAX script openly hosted on AT&T’s website, which returned an email when handed a hardware identification number called a ICC-ID (integrated circuit card identifiers). In that regard, Goatse hardly had to ‘hack’ in a traditional sense to obtain the information as authorities are suggesting. The only trickery at all was to make the request header look like it came from an iPad. From there it was just a matter of making a PHP script that guessed random ICC-IDs and monitored the returned emails.”