AT&T fixes major iPad 3G security hole

By Ben Rooney, staff reporter


NEW YORK (CNNMoney.com) -- AT&T said late Wednesday that it has fixed a security hole that may have allowed hackers to access the e-mail addresses of more than 100,000 iPad 3G owners.

The announcement came shortly after tech and gossip blog Gawker posted an expose of the breach. A hacker group used a vulnerability on AT&T's website to harvest the e-mail addresses iPad buyers provided to activate their devices, which went on sale barely more than a month ago.

The result was a glitzy who's who list of iPad early adopters, which includes major political figures, military officials and top politicians. Rahm Emanuel, the chief of staff for President Obama, was among the iPad users whose e-mail address was exposed, according to Gawker. Hollywood producer Harvey Weinstein and New York City Mayor Michael Bloomberg were also on the hit list.

Without commenting on the vast scope of the alleged hack, AT&T acknowledged taking action to fix a security hole.

The company was informed Monday by a business customer about the "possible exposure" of their iPad ICC IDs, a unique identification number used to link devices with their owners.

"This issue was escalated to the highest levels of the company and was corrected by Tuesday," AT&T (T, Fortune 500) spokesman Mark Siegel said in a prepared statement. "We have essentially turned off the feature that provided the e-mail addresses."

Siegel said e-mail addresses were the only information that could have been exposed as a result of the glitch. He said AT&T is continuing to investigate the problem and will inform all customers who may have been affected.

"At this point, there is no evidence that any other customer information was shared," Siegel said.

An engineer for "Goatse Security," the hacker outfit that discovered the AT&T hole and alerted Gawker about its data harvest, told CNNMoney.com that Gawker's account of the breach is accurate. He declined to comment further.

Apple (AAPL, Fortune 500), which sold more than two million iPads since the device debuted on April 3, did not immediately respond to a request for comment.

CNNMoney.com staff writer David Goldman contributed to this report.  To top of page

Frontline troops push for solar energy
The U.S. Marines are testing renewable energy technologies like solar to reduce costs and casualties associated with fossil fuels. Play
25 Best Places to find rich singles
Looking for Mr. or Ms. Moneybags? Hunt down the perfect mate in these wealthy cities, which are brimming with unattached professionals. More
Fun festivals: Twins to mustard to pirates!
You'll see double in Twinsburg, Ohio, and Ketchup lovers should beware in Middleton, WI. Here's some of the best and strangest town festivals. Play
Index Last Change % Change
Dow 16,424.85 162.29 1.00%
Nasdaq 4,086.23 52.06 1.29%
S&P 500 1,862.31 19.33 1.05%
Treasuries 2.64 0.01 0.34%
Data as of 3:05am ET
Company Price Change % Change
Bank of America Corp... 16.13 -0.26 -1.59%
Facebook Inc 59.72 0.63 1.07%
Yahoo! Inc 36.35 0.00 0.00%
Intel Corp 26.93 0.16 0.60%
Alcoa Inc 13.42 0.37 2.84%
Data as of Apr 16
Sponsors

Sections

The company continues to struggle with convincing marketers to pay as much for mobile ads as they do for desktop ads. More

Indian markets are riding high as investors bet that an election and new administration will cure some of the country's economic ills. More

The company continues to struggle with convincing marketers to pay as much for mobile ads as they do for desktop ads. More

Schwinn, Trek and Cannondale are all iconic American bicycle brands. But none of them are made in the United States. More

Pamela Knighton, a 51-year-old social worker from Cuthbert, Ga. who earns less than $25,000 a year, had been really looking forward to her $4,300 tax refund last year. More

Market indexes are shown in real time, except for the DJIA, which is delayed by two minutes. All times are ET. Disclaimer LIBOR Warning: Neither BBA Enterprises Limited, nor the BBA LIBOR Contributor Banks, nor Reuters, can be held liable for any irregularity or inaccuracy of BBA LIBOR. Disclaimer. Morningstar: © 2014 Morningstar, Inc. All Rights Reserved. Disclaimer The Dow Jones IndexesSM are proprietary to and distributed by Dow Jones & Company, Inc. and have been licensed for use. All content of the Dow Jones IndexesSM © 2014 is proprietary to Dow Jones & Company, Inc. Chicago Mercantile Association. The market data is the property of Chicago Mercantile Exchange Inc. and its licensors. All rights reserved. FactSet Research Systems Inc. 2014. All rights reserved. Most stock quote data provided by BATS.