A group of lawyers has filed an appeal of Andrew "Weev" Auernheimer's conviction and lengthy sentence. Auernheimer, a computer researcher, discovered a massive security flaw in AT&T's website, and the United States government decided to prosecute him under the Computer Fraud & Abuse Act (CFAA) for it.
In 2010, Auernheimer's co-defendant Daniel Spitler discovered that AT&T had configured its servers to make the email addresses of iPad owners publicly available on the internet. Spitler wrote a script that collected roughly 114,000 email addresses, and Auernheimer distributed the list to media organizations as proof of AT&T's vulnerability. AT&T ultimately fixed the problem, but federal prosecutors charged both Auernheimer and Spitler with identity theft and conspiracy to violate the CFAA. Aurenheimer went to trial, was convicted, and was sentenced to 41 months' imprisonment.