$$Ethical hacking.$$ It$$s probably an understatement to

say that people were excited about the introduction of

Apple$$s iPad.$$ Then the news broke that a small group

of computer experts calling themselves Goatse Security

had hacked into AT&T$$s Web site and found numbers that

identified iPads connected to AT&T$$s mobile network.

Those numbers allowed the group to uncover $114,000$

e$-$mail addresses of thousands of first$-$adopter iPad

customers, including prominent officials in companies,

politics, and the military. AT&T called it an act of malice,

condemned the hackers, and apologized to its affected

customers. The group that exposed the flaw said that it did

a $$public service.$$

Designing Organizational Structure$$Adaptive Designs $331$

One analyst for CNET also said that the group did a

good thing. $$Security researchers often disclose holes to

keep vendors honest. Many sources complain that they

notify companies of security vulnerabilities and that the

companies take months, or even years, to provide a fix to

customers. In the meantime, malicious hackers may have

discovered the same hole and may be using it to steal data,

infect computers, or attack systems without the computer

owner knowing there is even a risk.$!$

$11-11.$ What do you think? Is there such a thing as $$ethical

hacking?$$

$11-12.$ What ethical issues do you see here? What are the

implications for various stakeholders in this situation?