re rAT&T's worst security breach? (was: re: Apple's Worst Security Breach: 114,000 iPad Owners Exposed)

[Dave Farber <dfarber () me com>]

Begin forwarded message:

> From: Peter Capek <capek () ieee org>
> Date: June 10, 2010 1:28:47 PM EDT
> To: dave () farber net
> Cc: joehall () gmail com
> Subject: [IP] AT&T's worst security breach? (was: re: [IP] Apple's Worst Security Breach: 114,000 iPad Owners Exposed)

> I don't know if this week's revelation was in fact AT&T's worst security breach (or even how one
> measures these things; my vote would be for letting NSA eavesdrop on its data network without a warrant), but it 
> seems pretty clear from what's been revealed that it is not Apple's fault.  I wonder how many people have seen the 
> subject line about "Apple's Worst Security Breach" repeatedly in their in-box, reinforced by "iPad Owners Exposed" 
> and taken away an inaccurate impression.   As I like to say, this is how facts get created.
>
>                  Peter
>
>
>
> On Thu, Jun 10, 2010 at 1:16 PM, Dave Farber <dave () farber net> wrote:
>
>
>
>
> Begin forwarded message:
>
> > From: Joseph Lorenzo Hall <joehall () gmail com>
> > Date: June 10, 2010 8:10:32 AM EDT
> > To: "dave () farber net" <dave () farber net>
> > Subject: Re: [IP] Apple's Worst Security Breach: 114,000 iPad Owners Exposed
>
> > The details appear to indicate that this was accomplished using an
> > AT&T API that would return the email address of an iPad 3G user based
> > on a unique identifier associated with the SIM card... so, while Apple
> > should demand an accounting for this, it's not Apple's disclosure but
> > AT&T's.
> >
> > Of course, while some 3G iPad users may guard their personal email
> > addresses with care, many do not (I stopped trying a long time ago).
> > If all that was breached is the email address and the fact that one
> > owns an iPad 3G, neither of those facts seem very sensitive. So, a
> > minor affront to some, a substantial inconvenience to others. best,
> > Joe
> >
> > On Wednesday, June 9, 2010, dfarber <dfarber () me com> wrote:
> > > Begin forwarded message:
> > > From: Jim Warren <jwarren () well com>
> > > Date: June 09, 2010 05:50:20 PM
> > > To: Dave Farber <dave () farber net>
> > > Subject: Apple's Worst Security Breach: 114,000 iPad Owners Exposed
> > >
> > > VALLEYWAG reports:
> > >
> > > "The breach ... exposed the most exclusive email list on the planet,
> > > a collection of early-adopter iPad 3G subscribers that includes
> > > thousands of A-listers in finance, politics and media, from New York
> > > Times Co. CEO Janet Robinson to Diane Sawyer of ABC News to film
> > > mogul Harvey Weinstein to Mayor Michael Bloomberg. It even appears
> > > that White House Chief of Staff Rahm Emanuel's information was
> > > compromised.
> > >
> > > "It doesn't stop there. According to the data we were given by the
> > > web security group that exploited vulnerabilities on the AT&T
> > > network, we believe 114,000 user accounts have been compromised ..."
> > >
> > > http://bit.ly/9TDXOu
> > >
> > > <sigh> --jim; Jim Warren, open-govt & tech-civlib advocate & sometime columnist
> > >   http://en.wikipedia.org/wiki/Jim_Warren
> > >   justjim36 on twitter  |  Jim Warren on Facebook
> >
> > >      Archives <https://www.listbox.com/member/archive/247/=now>
> >
> > >
> >
> > -- 
> > Joseph Lorenzo Hall
> > ACCURATE Postdoctoral Research Associate
> > UC Berkeley School of Information
> > Princeton Center for Information Technology Policy
> > http://josephhall.org/
> Archives       



-------------------------------------------
Archives: https://www.listbox.com/member/archive/247/=now
RSS Feed: https://www.listbox.com/member/archive/rss/247/
Powered by Listbox: http://www.listbox.com