U.S. prosecutors are expected to announce criminal charges relating to the alleged theft of email addresses and SIM ICC-ID numbers for over 110,000 iPad 3G users last June. Reuters reports that the charges arise from the hacking of AT&T’s servers which led to the breach; a security company known as Goatse Security discovered a script on AT&T’s website, accessible by the public, through which it obtained the data. Although the company claimed that it notified AT&T of the breach, it also admitted to sharing the PHP script it used to harvest the data with several third-parties prior to AT&T’s response. Paul Fishman, the U.S. attorney for the District of New Jersey, and the FBI plan to hold a press conference later today to discuss the charges; we will update this story once more information is available.
Update: Two men, Daniel Spitler and Andrew Auernheimer, were each charged with one count of fraud and one count of conspiracy to access a computer without authorization, according to Reuters.