Researcher Reports Zero-Day ‘Sign in with Apple’ Bug that Could Allow Full Account Takeover

01

Jun

2020

Researcher Reports Zero-Day ‘Sign in with Apple’ Bug that Could Allow Full Account Takeover

image credit: pixabay

Infosec researcher Bhavuk Jain has pocketed a handsome $100,000 from Apple’s bug bounty program after reporting a critical flaw that could have allowed malicious actors to bypass authentication and take over a user’s account.

Released to much fanfare at the annual Worldwide Developers Conference (WWDC) in 2019, ‘Sign in with Apple’ enables users to log into a third-party account without disclosing their email address.

Archives

Archives

About Us

Our mission is to help users and also IT security passionate to reach relevant information related to cyber security.

This publication contains a lot of information and guidance on how to better protect your IT systems, data and activities from malicious factors, and also on how to safely navigate the Internet.

We look forward to hearing from you about cyber safety. Please let us know if there’s something specific you’re interested in learning about.

Contact Us

Name *
Your name is required

E-mail *
Email address entered is invalid

Please enter a message

Incorrect security code

The Latest in IT Security

Categories

Featured

Archives

Latest Comments

About Us

Contact Us