A member of the Goatse security group, who disclosed the AT&T website vulnerability that revealed the email addresses of at least 114,000 iPad users, has been detained on drugs charges.
According to various media sources, Andrew Auernheimer was detained in an Arkansas jail on charges related to illegal drugs found during a search of his home. The Wall Street Journal claimed that the FBI had said that its search was related to its investigation into the breach of AT&T's website.
AT&T apologised for the website breach and closed the hole, but blamed the incident on ‘malicious' hackers and said it would cooperate with any effort to prosecute them.
In an interview last week with The Wall Street Journal, Auernheimer described himself as a security consultant and claimed credit last year for triggering a change on the Amazon website that temporarily caused gay-themed books to disappear from the site's sales rankings. Amazon blamed an internal glitch.
The Register claimed that Auernheimer faces four felony charges of possession of a controlled substance and one misdemeanour possession charge. No bond or court date has been set, but a hearing is scheduled for 18th June in Washington County Circuit Court.
Meanwhile AT&T has been hit by further problems after reports emerged that claimed some users have been able to see other people's account information when buying or trying to buy an iPhone 4. Demand has seen both the AT&T and Apple websites struggle with traffic demands as users look to pre-order the device.
Reuters claimed that AT&T customers reported seeing account information of other subscribers. Company spokesman Mark Siegel said the firm had received privacy complaints but it was not clear what information customers had seen because it had not been able to replicate the issue. He also said that customers could not have seen social security numbers, credit card data or call records.
Ron Gula, CEO of Tenable Network Security, said: “Small errors like these are often symptoms of larger design issues. It is possible that this issue resulted from when AT&T put new code into production in preparation for the new iPhone 4 or even as a response to a security audit for their recent iPad data breach.”