iPad hacker faces multiple drug charges, spotty past following FBI arrest

Posted by:
Date: Thursday, June 17th, 2010, 05:16
Category: iPad, News

Some hackers just have no luck.

Per CNET, one of the hackers in the group that snatched more than 100,000 iPad owner email addresses from AT&T’s servers was arrested Tuesday on felony drug charges after the FBI searched his Arkansas, US home.

Andrew “Escher” Auernheimer was arrested by Fayetteville, Ark., police and was booked into the Washington County Detention Center Tuesday afternoon, where he is being held on bonds totaling US$3,160.

Auernheimer, 24, faces four felony charges of possession of a controlled substance and one misdemeanor drug charge. During the raid, police reportedly found drugs that included cocaine, ecstasy, LSD, and Schedule 2 and 3 pharmaceuticals when they searched his home.

Auernheimer, who also goes by the hacker nickname “weev,” is one of 10 members of Goatse Security, a hacking group that used an automated script to collect 114,000 iPad email addresses from AT&T through a public feature of the carrier’s Web site.

Goatse revealed its e-mail harvesting after AT&T closed the hole, then defended its actions as “responsible disclosure” (the term given to security revelations made public only after a vendor has patched a bug). In a letter to customers apologizing for the email address disclosure, however, AT&T said the group “maliciously exploited” its Web site and promised it would “prosecute violators to the fullest extent of the law.”

In recent interview, Auernheimer argued that Goatse’s attack was “ethical” and denied that they did anything illegal . “We love America and did this in the public interest,” Auernheimer said at the time.

Wednesday, the Fayetteville Police Department declined to comment on the charges against Auernheimer, instead referring all questions to the FBI.

Special Agent Bryan Travers of the FBI’s Newark, N.J., division confirmed that the agency had served a search warrant at Auernheimer’s home, but declined to answer any other questions, including whether agents removed computers from Auernheimer’s residence. “This remains an open investigation,” Travers said in an email.

The FBI launched an investigation into the Goatse attack last week, saying then that it was trying to determine if the group broke any laws.

Auernheimer is no stranger to drugs, according to Brian Krebs, a former reporter for the Washington Post and now the author of the Krebs on Security blog. In 2006, said Krebs, Auernheimer started a talk at a security conference by telling the audience that he was tripping on acid.

He has also regularly posted anti-Semitic statements on his LiveJournal blog, where he has claimed that the FCC is “Jewish-run” and that Jews “have long made a sham of the nobel [sic] prize.”

Auernheimer was arrested last March, according to a report by Fayetteville television station KHBS-TV , which noted that city police said he had given them a false name when they responded to a parking complaint.

A court hearing is scheduled for Friday morning in Washington County Circuit Court.

Stay tuned for additional details as they become available.

FBI to investigate AT&T/iPad security breach

Posted by:
Date: Friday, June 11th, 2010, 09:33
Category: iPad, News

When embarrassingly hacked, call the FBI.

Per Reuters, the Federal Bureau of Investigation said Thursday that it has begun a probe into an AT&T security breach that exposed the email address of over 100,000 registered iPad owners.

“The FBI is aware of these possible computer intrusions and has opened an investigation to address the potential cyber threat,” FBI spokesman Jason Pack said.

The move comes one day after AT&T acknowledged that a security flaw on its website made it possible for hackers to query its database and uncover the email addresses of customers who had registered to use its mobile broadband service on their iPhone 3G.

“This issue was escalated to the highest levels of the company and was corrected by Tuesday,” the carrier said. “We are continuing to investigate and will inform all customers whose e-mail addresses may have been obtained.”

The attack on AT&T’s web servers resulted in at least 114,000 iPad 3G users’ emails being leaked to Goatse Security hackers when batches of iPad ICC-IDs were entered via specially formatted HTTP requests.

The group automated requests of the email address information for a wide swath of ICC-ID serial numbers using a script. Although the exploit revealed the addresses of several prominent government and corporate officials, no other information was revealed as part of the breach.

A representative for Goatse Security stated that it ‘hasn’t heard from law enforcement and that it didn’t do anything illegal, so doesn’t see why it would.’

Stay tuned for additional details as they become available.

QuickerTek releases Apple Juicz external battery for iPad

Posted by:
Date: Thursday, June 10th, 2010, 10:31
Category: Accessory, iPad, News

Accessory maker QuickerTek has announced a new line of external batteries via its
Apple Juicz for iPad. The unit, a 9400mAh lithium polymer battery is claimed to be rated for over 2000 charge cycles with the web site claiming that the battery pack adds an additional 20 hours of usage time for the iPad with each charge.

The pack features advanced safety circuitry with failsafe protection, temperature and charge/discharge controls and automatic cell balancing. Per iPodNN, the Apple Juicz can fully recharge an iPad in three hours, while a second USB port can charge a second device such as an iPhone or iPod touch. It can power any USB-chargeable device, but has special circuitry guaranteeing compatibility with Apple’s range of products.

The battery is housed in a machined aluminum case with an anodized finish. The design also integrates a 10-LED gauge that allows users to quickly view the remaining battery power.

The Juicz for iPad is now shipping for US$250 and includes a year’s warranty with parts and labor.

AT&T web site hacked, iPad 3G user emails leaked

Posted by:
Date: Thursday, June 10th, 2010, 04:23
Category: Hack, iPad, iPhone, News

attlogo

A good hack can be seen in one of two ways:

1. It keeps a company on its toes and aware of what might come at it.

2. It’s less-than-wonderful news that makes you wonder how your information was exploited and makes a lot of people slam their heads against their desks in frustration.

Per Gawker, a group of black hat hackers have exploited a security flaw on AT&T’s web servers which enabled them to obtain email addresses from the SIM card addresses of iPad 3G users.

The breach described the event as “another embarrassment” for Apple and outlined a variety of high profile individuals whose email addresses were obtained by automated script attacks on AT&T’s web server based on their iPad 3G SIM addresses (ICC ID).

The publication claimed that the identifying information meant that thousands of iPad 3G users “could be vulnerable to spam marketing and malicious hacking,” while also pointing out that many users have actually already published their iPad ICC ID numbers in Flickr photos. Presumably, many of them also have public email addresses and therefore already receive spam like the rest of us.

The attack on AT&T’s web servers resulted in at least 114,000 iPad 3G users’ emails being leaked to the hackers, who were coy as to whether they were planning to enable others to access the data. The security leak, which returned a user’s email address when their ICC-ID was entered via a specially formatted HTTP request, has since been patched.

The group automated requests of the email address information for a wide swath of ICC-ID serial numbers using a script. No other information was discovered.

The report suggested that having known ICC IDs would leave iPad 3G users vulnerable to remote attacks, citing the attackers involved in the security breach as claiming that “recent holes discovered in the GSM cell phone standard mean that it might be possible to spoof a device on the network or even intercept traffic using the ICC ID.”

In its report, Gawker cited telephony security experts who disputed that the ICC ID email breach was a serious issue. “Vulnerabilities in GSM crypto discovered over the years, none of them involve the ICC ID […] as far as I know, there are no vulnerability or exploit methods involving the ICC ID, ” said Emmanuel Gadaix, a mobile security consultant.

The report also noted that Karsten Nohl, a “white hat GSM hacker and University of Virginia computer science PhD,” informed them “that while text-message and voice security in mobile phones is weak,” the “data connections are typically well encrypted […] the disclosure of the ICC-ID has no direct security consequences.”

At the same time, Nohl described AT&T’s lapse in publishing the email information as grossly incompetent, saying, “it’s horrendous how customer data, specifically e-mail addresses, are negligently leaked by a large telco provider.”

On Wednesday, AT&T issued the following statement regarding the breach:
“This issue was escalated to the highest levels of the company and was corrected by Tuesday. We are continuing to investigate and will inform all customers whose e-mail addresses… may have been obtained.”

Either way, be careful out there, beware the spam and the phishing efforts that never seem to let up and if an e-mail is offering something that seems too good to be true, it probably is.

International iPad launch underway, line of over 1,200 reported in Japan

Posted by:
Date: Friday, May 28th, 2010, 05:49
Category: iPad, News

Apple’s iPad hit the international markets today with initial reports over over 1,200 lined up at Apple’s Ginza flagship store for its 8AM opening. Per Electronista, lines had started as early as Wednesday in Japan and have been matched by similar lines in Australia and Europe. Japanese pre-order numbers aren’t known, but over 900,000 allegedly ordered the tablet in Europe.

The Tokyo queue was helped by the Japanese pre-order campaign, which let customers reserve their iPads in-person rather than online. Shoppers country have also historically been more likely to line up for product launches of many kinds, not just Apple, as NTT DoCoMo saw smaller but noticeable lines for the Xperia X10 handset.

Apple has routinely had a disruptive effect on Japan, as the iPod was the first foreign MP3 player to oust the Sony Walkman from its top spot; the iPhone makes up 72 % of Japanese smartphones and a small but sizeable portion of all cellphones in the country. Few tablets are sold in Japan outside of convertible notebooks, and the relative absence of competitors may give Apple free rein in the short-term future. Sony so far has refused to enter the market quickly but has been one of the few in the region to express interest in building a rival.

Apple rescinds no-cash policy for iPads

Posted by:
Date: Friday, May 21st, 2010, 04:31
Category: iPad, News

As much as Apple may make you want to storm the gates of 1 Infinite Loop, blazing pitchforks in hand, the company sometimes listens.

Per KGO-TV, a San Francisco-baed woman who was denied the ability to purchase an iPad with cash managed to push Apple to reverse its policy and rewarded the woman by giving her the hardware for free.

Diane Campbell lives on a fixed income, and saved up money to buy an iPad from an Apple store in San Francisco. But when she attempted to purchase the device with cash, she was denied, based on an Apple policy designed to ensure the product is fairly distributed as the hardware is in short supply.

“Mr. Jobs, give a sister a break, OK?” she told the KGO-TV San Francisco news station. “I’m not going to go sell my iPad.”

After the station featured Campbell’s story, Apple responded. Ron Johnson, Apple’s senior vice president of retail, spoke with the newscast to reveal that Apple would no longer continue its credit-only policy.

“It came to our attention that Diane, through your story was very interested in buying an iPad with cash,” Johnson said. “And we made a decision today to change that.”

Apple’s original intent was to make sure that its policy restricting iPad preorders to two per customer was properly enforced. Apple has faced strong demand and limited supply of the iPad since it first launched in the U.S. on April 3rd.

The previous policy has been rescinded and anyone can pay for an iPad with cash, as long as they set up their Apple account at the store. The iPad must first be connected to a PC or Mac with iTunes to be activated regardless.

Apple also sent two employees to Campbell’s home to personally deliver her an iPad, free of charge.

Hulu Plus service for iPad delayed, won’t make May 24th launch

Posted by:
Date: Tuesday, May 18th, 2010, 06:47
Category: iPad, News

You love Hulu on your Mac.

But you’ll have to wait a little longer for it on the iPad.

Per MediaMemo, sources close to Hulu have cited that Hulu’s new service, dubbed “Hulu Plus” wouldn’t make its anticipated arrival date of May 24th and in fact there was “no way” Hulu Plus would become available next week.

According to the original plan, Hulu plans to charge a monthly subscription for access to Hulu on the iPad through a forthcoming application to be released on the App Store. Hulu executives were initially hopeful that they could release an application potentially alongside the debut of the iPad.

Sources close to the story said Tuesday that it’s likely the service remains in negotiations with content holders. Even with the delays, it’s been reported that the principal partners, including Fox, ABC and NBC have agreed to the basics of the subscription plan, including a US$10-per-month fee for access to “a deeper catalog of broadcast shows plus access to the services like Apple’s iPad.”

“And even if Hulu and all of its partners are seeing eye-to-eye — not a given — getting the rights from various programming partners to sell their shows could be a slog,” Kafka wrote for MediaMemo.

Sources pushing Hulu’s subscription plan behind the scenes did reportedly say that the new service will be “revolutionary.”

One feature that the new Hulu won’t support: HTML5. Last week, the company revealed on its official blog that it doesn’t see HTML5 in its immediate future. The current player on the website is built on Adobe Flash, which is used to stream video, secure content, and handle reporting for advertisers, among many other tasks.

Hulu’s iPad application is expected to be similar to the existing ABC and Netflix streaming players available for download on the App Store. The popular ABC application shows programs like “Lost” and “Desperate Housewives” for free, with ad support. And that free product has apparently caused concern for Hulu and its subscription plans.

Reports have suggested that Hulu will incentivize its subscription plan by offering streaming to Apple’s iPad, as well as by including a “window” where content is available to subscribers before it can be seen for free by the general public. It is said that Hulu’s business partners have pressured the service into subscription plans to “train” viewers that they should pay for online access to content.

Stay tuned for additional details as they become available.

Hulu confirms, quickly retracts, vow of HTML5 support for iPad

Posted by:
Date: Friday, May 14th, 2010, 04:25
Category: iPad, News

Video streaming web site Hulu both posted and quickly retracted a blog post yesterday, the edited form stating that the web site doesn’t see using HTML5 in its immediate future.

Per AppleInsider, Eugene Wei, vice president of product with Hulu, said that his company’s contractual requirements make the transition to HTML5 too difficult. The current player on the website, built with Adobe Flash, does a great deal more than stream video.

“We continue to monitor developments on HTML5, but as of now it doesn’t yet meet all of our customers’ needs,” Wei wrote. “Our player doesn’t just simply stream video, it must also secure the content, handle reporting for our advertisers, render the video using a high performance codec to ensure premium visual quality, communicate back with the server to determine how long to buffer and what bitrate to stream, and dozens of other things that aren’t necessarily visible to the end user.”

The statement would seem to finally put to rest lingering rumors that Hulu might convert to HTML5 for an iPad-friendly site. But it does not mean that iPad users will not be able to access Hulu.

The company is still expected to bring its service to the iPad eventually, through software in the App Store much like the ABC and Netflix streaming players. It is believed Hulu on the iPad will be a pay-only service that would require a monthly subscription.

But the existing, popular ABC application shows programs like “Lost” and “Desperate Housewives” for free, with ad support. And that free product has apparently caused concern for Hulu, which is rumored to introduce a US$9.95-per-month subscription plan later this month, on May 24th.

It is believed that Hulu will incentivize its subscription plan with Apple’s iPad, and also offer a “window” where content is available to subscribers, both on computers and the iPad, before it can be seen for free by the general public. Rumors have suggested Hulu’s business partners have pressured the service into subscription plans to “train” viewers that they should pay for online access to content.

Stay tuned for additional details as they become available.

Recent support document points to forthcoming iPad Wi-Fi fix

Posted by:
Date: Tuesday, May 11th, 2010, 08:24
Category: iPad, News, Software

iPad users who’ve been tormented by Wi-Fi connectivity issues could see a forthcoming fix from Apple in the near future.

Per AppleInsider, a newly updated support document from Apple explicitly states that the iPad maker will issue a software update to address the issues. The document does not, however, provide a timeline for the planned fix.

“A very small number of iPad users have experienced issues with Wi-Fi connectivity,” the document reads. “This article outlines workarounds for these issues. Apple will also address remaining Wi-Fi connectivity issues with a future iPad software update.”

In the interim, Apple offers a number of potential fixes for the issue:

-Verify your Wi-Fi router firmware is up to date

- If your router’s security encryption is WEP, try WPA or WPA2, as WEP can cause intermittent disconnects with the iPad which requires retyping a password.

- Make sure the iPad screen brightness is not at the lowest level.

- Obtain a new IP address by going into Settings, Wi-Fi, accessing the settings of the current network, and choosing “Renew Lease.”

- Finally, if these steps do not work, users are recommended to try turning Wi-Fi off and back on.

If none of the above methods address connectivity issues, users are asked to contact Apple support.

Just days after the iPad launched, AppleInsider noted the Wi-Fi issues reported by numerous users. Problems have occurred with a variety of routers, including Apple’s own AirPort Extreme, and range from a weak signal to an inability to connect to a network.

Apple quickly set up a support document for users who have problems getting their iPad to rejoin known Wi-Fi networks after a restart or waking from sleep. The company said issues were known to occur with some third-party Wi-Fi routers that are dual-band capable. Apple recommended creating separate Wi-Fi network names to identify each band, such as adding ‘G’ to the 802.11g network name, and ‘N’ to the 802.11n network. It also recommended using the same security type, such as WPA, for both bands.

The iPad’s Wi-Fi issues were pegged as a software problem by Princeton University last month. The school’s Office of Information Technology reported that a software glitch in the device causes it to use a network-assigned IP address after its lease has expired.

Princeton suggested that the problem comes from within iPhone OS 3.2, as the iPad will incorrectly continue using an IP address without renewing its lease, usually for hours. The issue is resolved when the iPad asks for a new DHCP lease, or the device disconnects from the network. The university found that more than half of all iPads on the campus demonstrated the malfunction.

The university offered the following temporary workaround until Apple issues a software update: reconfigure the iPad’s settings so that the screen never locks. This can be done by going to Settings, General, Auto-Lock and choosing “Never.” Users must also turn off Wi-Fi before they manually lock the screen. Other options were to turn the iPad completely off, rather than just locking it, or to simply leave the iPad on without locking the screen.

Stay tuned for additional details as they become available.

Dev-Team unlocks iPad 3G, posts hack online

Posted by:
Date: Monday, May 3rd, 2010, 07:02
Category: Hack, iPad

You can try to keep people from jailbreaking Apple’s newest devices.

Or you can take up shoveling water for fun and profit.

Neither effort will really get you anywhere.

Per iHackintosh, the iPad 3G was officially jailbroken with video proof released only a few hours after its launch. According the the article, the Dev-Team has released the “Spirit” jailbreak, which allows you to jailbreak all models of iPad, iPhone, and iPod touch running the latest firmware versions available.

Also, the authors note that “On iPad, all this is still sort of beta,” and as such if anything goes wrong you might need to restore.



Stay tuned for additional details as they become available.