A data breach on AT&T servers has affected more than 100,000 iPad users, by providing their e-mail addresses to hackers. This brute force attack managed to scrape e-mail addresses from these servers “because the mobile carrier used poorly-designed software.” The breach also allowed hackers to access ICC-ID (Integrated Circuit Card Identifier) numbers for iPads, allowing them to connect these SIM card numbers with their e-mail addresses.
Reports say that e-mail addresses for a number of politicians, executives and celebrities were harvested. However, some media outlets have attempted to fan the flames of this story calling it “Apple’s worst security breach.” Besides the fact that Apple wasn’t breached, these e-mail addresses itself are not entirely secure information. After all, whenever anyone sends an e-mail, they include their address. Granted, some of these people may not want their e-mail addresses divulged, but no iPads have been hacked, and no other personal information seems to have been harvested.
AT&T claims that they have “turned off” the “feature” that permitted this breach.
On episode 338 of the Intego Mac Podcast, we discussed a different AT&T breach that affected 70 million customers, originally leaked in 2021.
AT&T data breach exposes 70 million records; here’s how to protect yourself
You can also subscribe to our e-mail newsletter and keep an eye here on The Mac Security Blog for the latest Apple security and privacy news. And don’t forget to follow Intego on your favorite social media channels: 
