Police in the US have arrested a member of the team that found a vulnerability affecting various iPad users on the AT&T network.
Andrew Auernheimer, a key member of Goatse Security that recently claimed to have found a security hole on the AT&T website containing iPad user information, was detained in Arkansas but for drug charges rather than anything iPad related, CNET has reported.
Auernheimer has previously been arrested for alledgedly providing a fake name to police officers responding to a parking complaint, Lieutenant Mike Perryman, of the Fayetteville Police Department, told CNET.
However, the authorities did not confirm why a warrant had been drawn up prior to the arrest, or whether it had anything to do with the authority's work on the AT&T case.
Earlier this month, Goatse Security said it had taken information about the vulnerability on the website to Gawker, an online gossip site. Goatse claimed to have accessed AT&T's iPad subscriber information containing around 114,000 email addresses, including those of high up politicians and business executives.
AT&T confirmed that it had closed the security hole and that it was only email addresses that had been accessed.
Mark Siegel, executive director of media relations at AT&T, told IT PRO: "The hackers did not inform us in advance about what they claimed to uncover."
Goatse claimed in a blog post that it had waited until the hole was fixed by AT&T before taking information to Gawker.
"We did not contact AT&T directly, but we made sure that someone else tipped them off and waited for them to patch until we gave anything to Gawker," Goatse added.
-
Will businesses get lost in AI translation?In-depth Multilingual AI tools can now pick up the phone to customers – but the jury is out on whether they will and should replace humans
-
OpenAI and AWS sign bumper $38 billion cloud contractNews The move by OpenAI doesn’t signal an end to its long-running ties with Microsoft
-
Critical Dell Storage Manager flaws could let hackers access sensitive data – patch nowNews A trio of flaws in Dell Storage Manager has prompted a customer alert
-
Flaw in Lenovo’s customer service AI chatbot could let hackers run malicious code, breach networksNews Hackers abusing the Lenovo flaw could inject malicious code with just a single prompt
-
Industry welcomes the NCSC’s new Vulnerability Research Initiative – but does it go far enough?News The cybersecurity agency will work with external researchers to uncover potential security holes in hardware and software
-
Hackers are targeting Ivanti VPN users again – here’s what you need to knowNews Ivanti has re-patched a security flaw in its Connect Secure VPN appliances that's been exploited by a China-linked espionage group since at least the middle of March.
-
Broadcom issues urgent alert over three VMware zero-daysNews The firm says it has information to suggest all three are being exploited in the wild
-
Nakivo backup flaw still present on some systems months after firms’ ‘silent patch’, researchers claimNews Over 200 vulnerable Nakivo backup instances have been identified months after the firm silently patched a security flaw.
-
Everything you need to know about the Microsoft Power Pages vulnerabilityNews A severe Microsoft Power Pages vulnerability has been fixed after cyber criminals were found to have been exploiting unpatched systems in the wild.
-
Vulnerability management complexity is leaving enterprises at serious riskNews Fragmented data and siloed processes mean remediation is taking too long
