840°
Submitted by EventHorizon 60d ago | news

Expose A Blatant Security Hole In AT&T's Servers, Get 3.5 Years In Jail

TechDirt: We've written a few times about the case of Andrew Auernheimer, perhaps better known as weev. While he has a bit of a reputation as an online troll, and self-admitted jerk, his case is yet another example of how ridiculously broken the CFAA (Computer Fraud and Abuse Act) remains. In this case, what he did was expose a pretty blatant security hole in AT&T's servers, that allowed anyone to go in and find the emails of any AT&T iPad owner, merely by incrementing the user ID. (AT&T, Hi-tech)

Read full story >>     Comments (17)
Comments (17)
Erudito87  +   61d ago
This guy exposed how horrendously underprotected at and t data system was and he didnt use the data for personal gain he just told at and t and he was prosecuted; he also got more time than a rapists(2 years for rapes) and the fraudsters in the financial sector(cause of the GLOBAL financial meltdown) and politicians that create illegal wars that result in the deaths of millions. What a wonderful system /s

Related video
#1 Agree(18) | Disagree(1) | Report | Reply
n4f  +   60d ago
well well , the system is...
*remove glasses*
fucked
YEEAAAAAHHHH!!!!!11one
#1.1 Agree(6) | Disagree(0) | Report | Reply
Robotronfiend  +   60d ago
In my head, you were Guile from Street Fighter with the glasses maneuver. :-)
#1.1.1 Agree(4) | Disagree(0) | Report
thorstein  +   60d ago
Indeed. Locally a filthy scumbag pedophile was on house arrest with an ankle bracelet. He defeated the device, raped a 10 year old and killed her mother.

But, yeah, let's really lay down the law on a guy that exposed security flaws in computers.
#1.1.2 Agree(1) | Disagree(0) | Report
Muffins1223  +   57d ago
time to get anonymous on there ass
#1.2 Agree(1) | Disagree(0) | Report | Reply
monkeyfox  +   60d ago
AT&T should be f$kin prosecuted...
#2 Agree(7) | Disagree(1) | Report | Reply
Psychotica  +   60d ago
Yeah, why wouldn't AT&T just be happy about this great noble deed? I mean wouldn't you want someone volunteering themselves to come over to your place and look for security weaknesses? Then they could tell everyone where you keep your spare key, you know to help out and advance home security everywhere..
#3 Agree(5) | Disagree(0) | Report | Reply
UnwanteDreamz  +   60d ago
Thank you! Someone over 12yo finally comments. You don't have the right to walk into a strangers house just cause the doors unlocked.
#3.1 Agree(1) | Disagree(1) | Report | Reply
hesido  +   60d ago
AT&T's fault is letting strangers walk into other people's homes so easily, with non-existent privacy measures. After all, those e-mail owners don't have any control over how AT&T leaves *their* door open.

He could have kept it a secret and used it for personal gain. Those people deserve to know their service provider suck at keeping their homes safe.
#3.1.1 (Edited 60d ago ) | Agree(1) | Disagree(2) | Report
UnwanteDreamz  +   60d ago
You are correct that AT&T should have better security but this man illegally obtained info from them. That is criminal and can be prosecuted. AT&T's failure to better secure the data does not negate this mans criminal act.

He took info that was suppose to be confidential. The fact that he did nothing with the info is irrelevant if the act (taking it) is illegal.

Also, none of what you said is an excuse for walking in. He knew it was a security oversight yet he still walked in. "The door was open" isn't a defense .
#3.1.2 (Edited 60d ago ) | Agree(1) | Disagree(1) | Report
Erudito87  +   60d ago
it was a massive DESIGN FLAW he told at and t and got punished for it with more time than the stubenville rapists
#3.1.3 Agree(0) | Disagree(1) | Report
UnwanteDreamz  +   60d ago
He planned to damage AT&T and he wanted to promote himself as something that he wasn't. He took something that wasn't his. Why are you ignoring these things?

How old are you? Rape sentences depend on victims age, severity, time held captive etc. What's you point w the two year BS?

They give two year sentences for pot in Texas. Since we are spitting out usless crap.
#3.1.4 (Edited 60d ago ) | Agree(1) | Disagree(1) | Report
Th3 Chr0nic  +   60d ago
In some places an open door is a legal invitation.
#3.1.5 Agree(0) | Disagree(1) | Report
fr0sty  +   60d ago
There's nothing useless about noting that a person can physically and mentally harm someone for the rest of their lives and only get 2 years, while a hacker that stole nothing gets more. This guy breached their security and told them about it... none of the info he obtained was used to harm anyone at all (quite the contrary, rather), and even if he had that harm wouldn't last a lifetime the way a rape does.
#3.1.6 Agree(1) | Disagree(2) | Report
Th3 Chr0nic  +   60d ago
Rape doesnt interfere with a megacorps business or piss them off so its ok in `Murica. you didnt know that?
#3.1.7 Agree(2) | Disagree(1) | Report
Th3 Chr0nic  +   60d ago
So facebook rewards people that find security loopholes and reports them. AT&T on the other hand sends them to prison.

Also now the US Goverment has the authority to use drone strikes against "cyber terrorists" like this fellow within US borders. Great so next time we will hear of a house being bombed in rural ohio cause some teenager decided to poke around in someone elses network.
#4 (Edited 60d ago ) | Agree(0) | Disagree(0) | Report | Reply
Gondee  +   60d ago
I have always hated AT&T. I guess ill say it again... Fuck you AT&T, you will never have any $$$ from me..
#5 Agree(0) | Disagree(0) | Report | Reply

Add comment

You need to be registered to add comments. Register here or login
Remember
Rules & guidelines
New stories
No stories found