Skip to main content

AT&T's Apology for Massive Security Breach

Last week, a group calling themselves Goatse Security identified a massive hole in AT&T's system that allowed for the harvesting of more than 100,000 email addresses of iPad 3G owners. Included on the list were White House Chief of Staff, Rahm Emanuel and Mayor Michael Bloomberg. The group said that they had shared the exploit and a third party notified AT&T. However, because they had shared details of the security breach with third parties, Goatse said it wasn't sure who had information about the exploit and who could have had taken advantage before AT&T patched things up.

Given the high profile names included on the list of emails, the FBI said Thursday that it had opened an investigation into the breach, calling it a potential cyberthreat. Over the weekend AT&T sent out an email to all iPad 3G users, apologizing for the breach.

June 13, 2010

However, Goatse Security isn't exactly pleased about being called 'malicious.' The group responded to the letter with a blog post saying they loved America and disclosed the exploit because "the idea of the Russians or Chinese being able to subvert American infrastructure is a nightmare."

"In addition AT&T says the person responsible for this went “to great efforts”. I’ll tell you this, the finder of the AT&T email leak spent just over a single hour of labor total (not counting the time the script ran with no human intervention) to scrape the 114,000 emails. If you see this as “great efforts”, so be it. I know that the RBN has literally thousands of people working full-time to exploit software vulnerabilities. At any given moment, whatever efforts us researchers are making are dwarfed by those in the thrall of evil. So get real. You fucked up, we helped you that figure out and informed the public. You should thank us, but you can keep on shit-talking if you want. We know what we did was right.

To read the full post, click here.