AT&T iPad Hacker's Real Crime Was Embarrassing the Wrong People | Wired ...
Disclosing a flaw in a widely used system without making someone at least a little angry requires a delicate touch. But Andrew Auernheimer, a.k.a. “Weev,” a 26-year-old finder of security vulnerabilities, is anything but delicate.Two years ago, Auernheimer and a friend made a surprising discovery about the way AT&T was protecting its web database of iPad cellular data accounts: That is, AT&T wasn’t protecting it at all. Any customer could access his or her account data by going to an AT&T URL containing their iPad’s unique numerical identifier. No password, cookie, or login procedure was required to bring up a user’s private information. Auernheimer
What the influencers are saying
-
Robert McMillan
"How can our delicate security ecosystem survive if embarrassment becomes a crime?" Well asked, @mattblaze http://t.co/jELjyXPB
-
Chris Wysopal
RT @bobmcmillan "How can our delicate security ecosystem survive if embarrassment becomes a crime?" http://t.co/wBlsWvQP < It can't.
-
attrition.org
AT&T iPad Hacker’s Real Crime Was Embarrassing the Wrong People - http://t.co/l5GCcEgv (by @MattBlaze)
-
briankrebs
RT @bobmcmillan: "How can our delicate security ecosystem survive if embarrassment becomes a crime?" Well asked http://t.co/40GLBz8O
-
Web Security News
AT&T iPad Hacker’s Real Crime Was Embarrassing the Wrong People http://t.co/Qus5sxxU
