But Facebook went further than other sites, in some cases signaling which user name or ID was clicking on the ad as well as the user name or ID of the page being viewed.

WSJ: Facebook, MySpace Confront Privacy Loophole

When a number generated by the hackers matched an actual ICC-ID, the authentication page log-in screen was returned to the hackers with the email address associated with the ICC-ID already populated on the log-in screen.

FORBES: AT&T Email: That Huge iPad Security Breach Was Caused By Bad People Called "Hackers"--Not AT&T

The link opened a bogus login page requesting users enter their staff ID and password, reports suggest.

BBC: AP Twitter account hacked in fake 'White House blasts' post