iPad Hacker Could Be Jailed After Exposing Security Hole

Discussion in 'Apple iPad News' started by Maura, Nov 21, 2012.

  1. Maura
    Offline

    Maura iPadForums News Team

    Joined:
    Jun 7, 2010
    Messages:
    2,487
    Thanks Received:
    102
    Trophy Points:
    63
    Location:
    UK
    Ratings:
    +105 / 0
    [​IMG]

    BGR writes today about the case of two hackers from Goatse Security , one of who could face jail, despite trying to do good. The hackers found a way to harvest emails and data from iPads via a security hole in AT&T’s website. They then made their discovery public, in order to warn other iPad users about AT&T’s site. In no way did the hackers expose the emails they obtained, or try and make money from what they had found. Even so, LiveScience.com reports, via BGR, that one of the hackers, Andrew Auernheimer, could still be jailed as a result of what he did. The reason for this is because Auernheimer is accused of breaking the Computer Fraud and Abuse Act of 1986. Apparently being so old, the law doesn’t take into account hackers that are actually trying to do good. The case will either be ruled on this week, or failing that it could go to the Supreme Court, and could possibly become a precedent-setting hacking case that could help to define future laws.

    Source: AT&T iPad email hacker: Jail time a possibility | BGR
  2. Kaykaykay
    Offline

    Kaykaykay iPad Wizard

    Joined:
    Apr 28, 2011
    Messages:
    6,973
    Thanks Received:
    443
    Trophy Points:
    0
    Ratings:
    +443 / 0
  3. Skull One
    Offline

    Skull One iPad Junkie

    Joined:
    Mar 7, 2012
    Messages:
    612
    Thanks Received:
    78
    Trophy Points:
    28
    Ratings:
    +78 / 0
    This case has two very interesting aspects to it.

    1) White Hat hacking.

    2) Black Hat hacking.

    The young man claims publicly that he was White Hat hacking. The issue however is the documents that show they were doing it for notoriety. Regardless of how old the law is that is being applied, the issue is actually straight forward because the law actually covers the hackers original intent not his public plea.

    Personally, he crossed a line that almost every White Hat hacker for the last decade has accepted as the ethical line. You make the victim aware of the issue and you give them 6 weeks to fix it or until the exploit hits Zero Day status. At the end of 6 weeks or when Zero Day occurs, you then release the relevant information and a possible avenue of protection.
    • Like Like x 1
  4. Maura
    Offline

    Maura iPadForums News Team

    Joined:
    Jun 7, 2010
    Messages:
    2,487
    Thanks Received:
    102
    Trophy Points:
    63
    Location:
    UK
    Ratings:
    +105 / 0
  5. iJamesH
    Offline

    iJamesH iPad Junkie

    Joined:
    Aug 15, 2012
    Messages:
    900
    Thanks Received:
    109
    Trophy Points:
    43
    Ratings:
    +114 / 0
    A good deed never goes unpunished as the old saying goes.
  6. Skull One
    Offline

    Skull One iPad Junkie

    Joined:
    Mar 7, 2012
    Messages:
    612
    Thanks Received:
    78
    Trophy Points:
    28
    Ratings:
    +78 / 0
    That's the issue. He claims publicly that he was doing a good deed. The court documents submitted in evidence show a very different story. He wasn't doing it as a "good deed" if you follow the paper trail.
  7. Kaykaykay
    Offline

    Kaykaykay iPad Wizard

    Joined:
    Apr 28, 2011
    Messages:
    6,973
    Thanks Received:
    443
    Trophy Points:
    0
    Ratings:
    +443 / 0
    They sound like jerks who were going to get off on the attention, rather than trying to help identify a security problem and give proper notice so it could be fixed.
  8. scifan57
    Online

    scifan57 Super Moderator Staff Member

    Joined:
    Dec 3, 2011
    Messages:
    20,148
    Thanks Received:
    2,158
    Trophy Points:
    113
    Location:
    Regina,Canada
    Ratings:
    +2,427 / 1
    If they would have been serious about doing the right thing, they would have reported the security loophole immediately, not after downloading personal data for well over 100,000 people.
  9. AppsAsia
    Offline

    AppsAsia iPF Noob

    Joined:
    Jun 10, 2010
    Messages:
    3
    Thanks Received:
    0
    Trophy Points:
    0
    Location:
    Korea
    Ratings:
    +0 / 0
    well the blackhat hacking usually are the ones that make a lot of money through affiliate marketing and stuff..but this looks like white hat and its a shame that he could be jailed for this :(
  10. scifan57
    Online

    scifan57 Super Moderator Staff Member

    Joined:
    Dec 3, 2011
    Messages:
    20,148
    Thanks Received:
    2,158
    Trophy Points:
    113
    Location:
    Regina,Canada
    Ratings:
    +2,427 / 1
    You didn't read closely enough. They were as interested in profiting from their deeds as the blackest of black hats.
  11. The OB
    Offline

    The OB Super Moderator Staff Member

    Joined:
    Aug 10, 2012
    Messages:
    4,024
    Thanks Received:
    852
    Trophy Points:
    113
    Location:
    Adelaide, South Australia
    Ratings:
    +912 / 1
    Well, keep a close eye on him anyway, or he will end up in the Ecuadorian Embassy in London


    Sent from my iPad using Tapatalk

Share This Page