In January, two men were accused of stealing the personal data of iPad users: Daniel Spitler, 26, from San Francisco, and Andrew Auernheimer, 25, of Fayetteville, Ark. Now, CNet reports, Spitler has pleaded guilty “to conspiracy and ID theft charges related to his part in accessing iPad customer data on an AT&T Web site a year ago and publicizing it.”
Daniel Spitler wrote a script called the “iPad 3G Account Slurper” and used it against AT&T servers in June 2010 to harvest e-mail addresses and associated unique iPad numbers, according to a statement from the U.S. Department of Justice office in Newark, N.J.
Spitler admitted to communicating with co-defendant Andrew Auernheimer over Internet Relay Chat during the breach about how they should take advantage of the Web site hole and the data from 100,000 accounts that was exposed, the DOJ said. They decided to provide the information to Gawker,which published it in redacted form.
Spitler had surrendered to FBI agents in January and Auernheimer, 25, was arrested January 18 in Fayetteville, Ark., while appearing in state court on unrelated drug charges. The case against Auernheimer is still pending, a DOJ spokeswoman said. […]
In an interview with CNET last summer, Auernheimer said he and his Goatse Security hacking cohorts acted with the intention of warning AT&T about the hole and notifying iPad 3G customers about the exposure of their data. However, group members indicated in chat logs obtained by the DOJ that they had not contacted AT&T.