hass associates review
AT&T hacker Andrew Auernheimer, a.k.a. “weev,” has been sentenced to 3+ years in jail. He will spend 41 months behind bars for leaking 114,000 iPad users’ emails to a Gawker reporter, who posted the information online in a redacted format.
Auernheimer will also serve an additional three years of probation and pay more than $73,000 in restitution to AT&T.
Some are applauding the sentence. “Vulnerable systems exploited by attackers can have serious consequences beyond hacktivists claiming their break-in trophies,” said Mark Bower, vice president of Voltage Security, in an email to Infosecurity. “The impact of the Keys situation was manipulation of the media, and potentially access to sensitive data. That in itself could have costly impact, depending on how readers or even industry groups might respond to a manipulated story, as well as the fallout from potential sensitive data theft. If systems used to communicate with the public can be manipulated, then there will be consequential costs and harm.”
Auernheimer and his partner in crime, Daniel Spitler, were convicted last year of identity theft and “conspiracy to access a computer without authorization.” The two used a flaw in AT&T’s set-up process for the iPad 3G to obtain unique SIM identifier numbers for iPads and from there, their owners’ email addresses.
Auernheimer maintained that he informed AT&T of the breach, which AT&T denies. Early in 2011 Auernheimer and Spitler were arrested.
Auernheimer's sentence is the latest in a string of hacking prosecution work that many say levels overly harsh penalties for relatively light offenses.
VIEW RELATED/OTHER ARTICLES: