AT&T Responds to BoomTown Privacy Breach Via Email (Oh, the Irony!)

Earlier today, I wrote a piece about how I was one of the 114,000 AT&T customers whose email and device identity numbers had been easily exposed earlier this week via a flaw in the way the company registered the Apple (AAPL) iPad 3G for cellular access.

In my post, I complained that I had yet to hear from the telecom giant about the security snafu and release of my personal email address, which AT&T (T) had yet to acknowledge to those impacted.

Well, the company does read tech blogs, so this morning, this communication from a PR honcho was sent to my work email, which is available on this site publicly.

Regrets? AT&T has a few:

Hi Kara:

I am writing to apologize that your personal e-mail address was made public. As you know, we fixed the flaw that caused this almost as soon as we heard about it from one of our business customers. But that doesn’t change the fact that your personal information was exposed without your permission. That is something we truly regret.

Nothing is more important to us than protecting the privacy of customer information. You should know that in this case, the only thing compromised was your email address and not, for example, the contents of your email or any other personal information. And as you also know, the problem only affected iPad 3G customers. No other mobile devices or customers were involved.

Thanks very much for your patience. Please let me know if there is anything we can do for you or if you have any questions.

Mark Siegel
Executive Director-Media Relations
AT&T
[Address redacted]
[Work phone number redacted]
[Mobile phone number}
[Email address redacted]

As you can see, I used my crack security system–DELETE!–to save Siegel any incursions into his privacy.

And while I do appreciate the reaching out, I still want to hear–as do others affected–officially from AT&T about exactly what’s what.

Siegel told me in a follow-up email: “We are finalizing our plans for communicating with customers.”

(Suggestion to make us happy: A free iPhone 4 might be a sweet gesture. Only kidding!! Sort of.)

In addition, I am not sure, as he wrote in the initial email, whether it is comforting or not that it was only my email and only my iPad 3G that were violated.

That’s sort of like telling me that only one room of my digital house was broken into, although nothing good was taken, so not to worry.

Actually, if that happened in real life, I would still call the police. That is, if the call on my iPhone didn’t drop.

Again, I kid! Sort of.

Chris W.

Much ado about nothing
bosshogg187

mark siegel's email addy is on the AT&T website
rattyuk

Kara's email address is under her picture. (But that wasn't the one that was leaked of course)
subrayamallya

Kara, hopefully to make amends for the breach, they will wave the next two years of your data plan charges for you and all the people affected. I must be dreaming you say?
Shawn_The_Bohn

It's not “Much ado about nothing”, this is the problem, most people don't understand how little it takes for someone to pull the wool over the eyes of a half-asleep tech support person who hates their life/job.
pablofaja

I guess AT&T isn't happy you are releasing the D8 videos on Mondays and Thursdays. LOL!
samharrison

unfortunate but att is not known for being “user friendly” in any way. btw: the meebo bar at the bottom of your atd pages is a pain, it slows down your pages from loading…what benefit is there to me with this intrusive bar that slows down your pages? i'm not ever going to use it…if you insist on taking money from meebo for this (or worse, paying for it) then make it an option for users to enable…why put us all through the meebo sludge loading?
nsquared

Are you serious? You're upset because someone might see your email address? Oh, the horror.
willoregon

After that awesome Jobs interview i think Apple should send you and Walt a free phone personally.
Shawn_The_Bohn

If it's not such a big deal, then if a random person on the internet asked you for the email address associated with your bank account, would you give it to them???
nsquared

Uh, yes, I would. They might email me… ohhh, scary! Just like my grandmother has the email address associtated with my bank account.

Email addresses ARE NOT passwords, Shawn.
Shawn_The_Bohn

Your grandma is about as dangerous as a bunny rabbit I am sure.

Here is something very simple: If you are looking for something, the first thing you need to know is where to look.
Shawn_The_Bohn

nsquared… the irony here, is that it is you that is clueless. But thats why billions of dollars are stolen every year, because people like you don't have insight into the true nature of human beings.

I agree though, you shouldn't waste anymore of your time, go post your email addy and the name of your bank somewhere and see how long it takes.
adanc

Wow, i didn't know that someone knowing my emil address can eventually leads to knowing everything personal about me…get real but one thing i do know goog knows more about me than my mother because of their incessant collecting of my search date.
seanja

The email address that was leaked is the one on the whois lookup for allthingsd ( http://whois.domaintools.com/allthingsd.com ) innit? So what is the problem? You already leaked that address.
Shawn_The_Bohn

I know its so hard for some people to grasp…. but its not the email address, its the KNOWN associations that it has. If Kara was unsuspecting, she might get an email that says something to the effect of “Due to recent hacking, Comcast requires that you update your account information.” They could create a fake phone number, or a fake webpage, or any number of other plausible scenarios, the fact that people think things are impossible is why they get taken advantage of…
Shawn_The_Bohn

Think about it like this: What is the first thing that any investigator has to do to turn a picture of someone into a real lead? Give that picture a name. A name alone, and a picture alone, are not so powerful, but when they're associated, the combination creates an IDENTITY.

AT&T Responds to BoomTown Privacy Breach Via Email (Oh, the Irony!)

comments so far. Add yours.

AllThingsD by Writer