AT&T fixes major iPad 3G security hole

By Ben Rooney, staff reporter


NEW YORK (CNNMoney.com) -- AT&T said late Wednesday that it has fixed a security hole that may have allowed hackers to access the e-mail addresses of more than 100,000 iPad 3G owners.

The announcement came shortly after tech and gossip blog Gawker posted an expose of the breach. A hacker group used a vulnerability on AT&T's website to harvest the e-mail addresses iPad buyers provided to activate their devices, which went on sale barely more than a month ago.

The result was a glitzy who's who list of iPad early adopters, which includes major political figures, military officials and top politicians. Rahm Emanuel, the chief of staff for President Obama, was among the iPad users whose e-mail address was exposed, according to Gawker. Hollywood producer Harvey Weinstein and New York City Mayor Michael Bloomberg were also on the hit list.

Without commenting on the vast scope of the alleged hack, AT&T acknowledged taking action to fix a security hole.

The company was informed Monday by a business customer about the "possible exposure" of their iPad ICC IDs, a unique identification number used to link devices with their owners.

"This issue was escalated to the highest levels of the company and was corrected by Tuesday," AT&T (T, Fortune 500) spokesman Mark Siegel said in a prepared statement. "We have essentially turned off the feature that provided the e-mail addresses."

Siegel said e-mail addresses were the only information that could have been exposed as a result of the glitch. He said AT&T is continuing to investigate the problem and will inform all customers who may have been affected.

"At this point, there is no evidence that any other customer information was shared," Siegel said.

An engineer for "Goatse Security," the hacker outfit that discovered the AT&T hole and alerted Gawker about its data harvest, told CNNMoney.com that Gawker's account of the breach is accurate. He declined to comment further.

Apple (AAPL, Fortune 500), which sold more than two million iPads since the device debuted on April 3, did not immediately respond to a request for comment.

CNNMoney.com staff writer David Goldman contributed to this report.  To top of page

Frontline troops push for solar energy
The U.S. Marines are testing renewable energy technologies like solar to reduce costs and casualties associated with fossil fuels. Play
25 Best Places to find rich singles
Looking for Mr. or Ms. Moneybags? Hunt down the perfect mate in these wealthy cities, which are brimming with unattached professionals. More
Fun festivals: Twins to mustard to pirates!
You'll see double in Twinsburg, Ohio, and Ketchup lovers should beware in Middleton, WI. Here's some of the best and strangest town festivals. Play
Index Last Change % Change
Dow 16,677.90 216.58 1.32%
Nasdaq 4,452.79 69.95 1.60%
S&P 500 1,950.82 23.71 1.23%
Treasuries 2.28 0.05 2.06%
Data as of 7:21am ET
Company Price Change % Change
Apple Inc 104.83 1.84 1.79%
Bank of America Corp... 16.60 0.20 1.22%
AT&T Inc 33.66 -0.84 -2.43%
Microsoft Corp 45.02 0.64 1.44%
Facebook Inc 80.04 1.67 2.13%
Data as of Oct 23

Sections

Buffett's investment firm lost big on Coca-Cola and IBM this week, but that's about the extent of his losses this year. More

Regulators are about to reveal the results of an extensive health check of Europe's top 130 banks, indicating which may need a cash infusion. More

Using technology developed for the military and implemented in Iraq, schools have installed alarm systems that detect gunfire. More

Dressing up in crazy costumes, traveling the world, posing for photos -- and getting paid to do it. Here are journal entries from a day in the life of professional "cosplay" character, Linda Le. More

Market indexes are shown in real time, except for the DJIA, which is delayed by two minutes. All times are ET. Disclaimer Morningstar: © 2014 Morningstar, Inc. All Rights Reserved. Disclaimer The Dow Jones IndexesSM are proprietary to and distributed by Dow Jones & Company, Inc. and have been licensed for use. All content of the Dow Jones IndexesSM © 2014 is proprietary to Dow Jones & Company, Inc. Chicago Mercantile Association. The market data is the property of Chicago Mercantile Exchange Inc. and its licensors. All rights reserved. FactSet Research Systems Inc. 2014. All rights reserved. Most stock quote data provided by BATS.