Police in the US have arrested a member of the team that found a vulnerability affecting various iPad users on the AT&T network.
Andrew Auernheimer, a key member of Goatse Security that recently claimed to have found a security hole on the AT&T website containing iPad user information, was detained in Arkansas but for drug charges rather than anything iPad related, CNET has reported.
Auernheimer has previously been arrested for alledgedly providing a fake name to police officers responding to a parking complaint, Lieutenant Mike Perryman, of the Fayetteville Police Department, told CNET.
However, the authorities did not confirm why a warrant had been drawn up prior to the arrest, or whether it had anything to do with the authority's work on the AT&T case.
Earlier this month, Goatse Security said it had taken information about the vulnerability on the website to Gawker, an online gossip site. Goatse claimed to have accessed AT&T's iPad subscriber information containing around 114,000 email addresses, including those of high up politicians and business executives.
AT&T confirmed that it had closed the security hole and that it was only email addresses that had been accessed.
Mark Siegel, executive director of media relations at AT&T, told IT PRO: "The hackers did not inform us in advance about what they claimed to uncover."
Goatse claimed in a blog post that it had waited until the hole was fixed by AT&T before taking information to Gawker.
"We did not contact AT&T directly, but we made sure that someone else tipped them off and waited for them to patch until we gave anything to Gawker," Goatse added.
-
Trump's AI executive order could leave US in a 'regulatory vacuum'News Citing a "patchwork of 50 different regulatory regimes" and "ideological bias", President Trump wants rules to be set at a federal level
-
TPUs: Google's home advantageITPro Podcast How does TPU v7 stack up against Nvidia's latest chips – and can Google scale AI using only its own supply?
-
Security experts claim the CVE Program isn’t up to scratch anymore — inaccurate scores and lengthy delays mean the system needs updatedNews CVE data is vital in combating emerging threats, yet inaccurate ratings and lengthy wait times are placing enterprises at risk
-
IBM AIX users urged to patch immediately as researchers sound alarm on critical flawsNews Network administrators should patch the four IBM AIX flaws as soon as possible
-
Critical Dell Storage Manager flaws could let hackers access sensitive data – patch nowNews A trio of flaws in Dell Storage Manager has prompted a customer alert
-
Flaw in Lenovo’s customer service AI chatbot could let hackers run malicious code, breach networksNews Hackers abusing the Lenovo flaw could inject malicious code with just a single prompt
-
Industry welcomes the NCSC’s new Vulnerability Research Initiative – but does it go far enough?News The cybersecurity agency will work with external researchers to uncover potential security holes in hardware and software
-
Hackers are targeting Ivanti VPN users again – here’s what you need to knowNews Ivanti has re-patched a security flaw in its Connect Secure VPN appliances that's been exploited by a China-linked espionage group since at least the middle of March.
-
Broadcom issues urgent alert over three VMware zero-daysNews The firm says it has information to suggest all three are being exploited in the wild
-
Nakivo backup flaw still present on some systems months after firms’ ‘silent patch’, researchers claimNews Over 200 vulnerable Nakivo backup instances have been identified months after the firm silently patched a security flaw.
