Gawker reported today that at least 114,000 email addresses and their associated iPad 3G ICC ID numbers have been leaked via a script put against an AT&T wireless site. It appears this script was used to validate accounts to an iPad device by Apple stores during activation. The script only returned an email address associated with an ICC ID.

While the security breach may not seem to be too bad it is still a breach that AT&T needs to disclose to the effected users, which technically is every iPad 3G user.  Neither Apple nor AT&T have issued a statement on this breach which is just another black eye for AT&T.

The real concern with the breach is the email addresses of many top U.S. Military officials as well as CEO’s from many top companies. Even Microsoft is listed. I must also wonder why these people use their “real” email addresses for this type of account. It is called setting up a Gmail account for situations when you have to provide an email address for this type of subscription and don’t expose a direct way to contact you within your company or organization.

This script was shared prior to being brought to AT&T’s attention so you can bet this list has already been sold to spammers worldwide and hacking attempts are sure to follow with spoof emails.

Below is two screen shots from the Gawker article.

 Please check out the full article at Gawker via this link. The vulerability was discovered by Goatse Security.