CHARLOTTE, NC (WBTV) - For wireless users with AT&T, which means iPhone and iPad users, it's been a tough month.
The Ipad, a marketing sensation, has flown off the shelves. Pre-orders for the new Iphone are also beyond expectations. However, some Ipad customers and customers pre-ordering iPhones had their email addresses exposed for hours due to a design flaw.
HIGH PROFILE VICTIMS
If you are Diane Sawyer, White House Chief of Staff Rahm Emanuel or New York Mayor Michael Bloomberg you already know that your email addresses were on a hacker's list after taking advantage of an AT&T design flaw.
HOW CONSUMERS ARE FEELING
In a recent Wall Street Journal poll, over 44% of people said they are concerned about security flaws on their phones or devices like the Ipad and they have good reason to be. In less than 1 month, people have potentially been hit with a double whammy! First, email addresses for some iPad exposed and then it happened again with people placing early orders for the new iPhone.
THE IPAD AND IPHONE HACK:
Two separate issues at AT&T have exposed email addresses. I hate to say this but they are not the only one with this problem. It has happened at other sites, including Facebook earlier this year!
iPhone – Customer enters username and password on the AT&T site to order a new phone and AT&T sometimes displayed an account belonging to someone else!
iPad – Hackers showed how they could guess an iPad's unique Id, type it into the AT&T website and the screen would prefill with the matching email address!
ARE YOU AT RISK?
The good news is that no credit card information or passwords were exposed.
However, potentially anyone that has an iPad that was activated on the AT&T 3G network or anyone with an account at AT&T might have had their email address displayed to strangers.
WHY WAS IT DESIGNED THIS WAY?
This is the struggle for balance – people want quick access and don't realize that the tradeoff is security. AT&T's Chief Security Officer said that, for the iPad, they were trying to make it easy for customers on the go to access their accounts by popping in the email address for them. We have not seen an explanation for the iPhone order process showing the wrong account information.
TWO STEPS YOU CAN TAKE TO PROTECT YOURSELF:
ADDITIONAL INFORMATION AND RESOURCES:
HOW THE IPAD HACK WORKED:
HOW TO CREATE STRONG PASSWORDS:
LATEST NEWS TO TRACK THE IPAD AND IPHONE HACKS:
Devices & Internet News: There are lots of sites you can follow.
Three examples of sites following the most recent issues are: