Skip to main content

Apple Just Gave An Indian Hacker $100,000 For Finding A Flaw In Sign in with Apple

Apple unveiled the Sign in with Apple option back in June 2019 and the feature was received with somewhat positive attention. There’s a good reason for that positive response; it allows for a more secure authentication system as opposed to the social logins. Furthermore, this also enabled users to sign up with third-party apps and services without having to share their Apple ID email. However, an Indian security researcher in New Delhi recently discovered a critical flaw in the Sign in with the Apple system. This flaw would enable an attacker to take over an account simply by relying on an email ID.
Apple Gave A Hacker $100,000 For Finding A Flaw In Sign in with Apple
Apple, in return, has rewarded the security researcher generously. The tech giant paid the hacker $100,000 from Apple security bounty pot and this goes to show just how crucial this shocking discovery to Apple was. The good thing that came from all of this is that Apple has already taken care of the issue on its server-end and only after this was carried out did Bhavuk Jain – the genius who found the flaw – published his disclosure online on May 30.
Apple Gave A Hacker $100,000 For Finding A Flaw In Sign in with Apple
The potential flaw was only linked with the third-party apps that relied on Sign in with Apple without implementing any other security measures. It was a potential hazard owing to two reasons. It could have enabled a complete takeover of the user accounts of the third-party apps even if the user didn’t have a valid Apple ID. Furthermore, Apple was not able to catch this flaw during the development stages.
Apple Gave A Hacker $100,000 For Finding A Flaw In Sign in with Apple


Jain figured out that he could request authentication tokes for any email ID from Apple and those tokens would then be verified by making use of Apple’s public key. This means that an attacker could potentially gain access to the victim’s account. Jain also explained that an internal investigation was conducted by Apple that determined that no compromises had been made thus allowing it to fix the flaw before it caused any damage.

Comments

Popular posts from this blog

THE HISTORY OF ENUGU-EZIKE, SINGLE LARGEST AFRICAN COMMUNITY

Enugu-Ezike reputed as the largest single community in black Africa is located in Igbo Eze North Local Government Area of Enugu State of Nigeria. It has a population of about 259,431 with 36 villages in addition to some other newly created political autonomous communities. Enugu-Ezike has common boundaries with Benue and Kogi States of Nigeria. On the North is Ette, a non-Igbo speaking community in Igbo Eze North Local Government Area. On the East is Ofante and Idoma while the North West flank are Amaka and Akpanya communities of Benue State. To the South West is Ibagwa, Alor Agu, Unadu and Itchi. To the South East of Enugu-Ezike are Obollo Afor, Iheaka and Ovoko. Enugu Ezike is renowned for her palm wine, practice of traditional medicine and African Traditional Religion (ATR). As to the origin of Enugu-Ezike, various writers and researchers have come up with varied opinions about that. However, the one that appealed to me most has it that Enugu-Ezike originated from Benin Kingd...

10 Ways You Can Absolutely Make High figure income Online 2021

Personal Finance I'll show you a new way to accelerate your wealth building. For many people, making money online would be an absolute dream come true. If they could find a way to make money with a website or some other online venture, they could quit their job to focus on entrepreneurship, spend more time with their family, and finally take back control of their time and their lives. The crazy thing is, earning money online isn’t a pipe dream. I have been doing it for some months now with my website, blog and social medias. I also know Hundreds of other people who are earning money online their own way with websites, courses, or unique marketing strategies. Now, here’s the good news. The majority of online revenue strategies aren’t that complicated. Like any business venture, your online income takes time to grow. You need to be willing to devote the time and energy required to get your idea off the ground, and you need grit to stick with it even if your journey is slow when...

10 BEST DISPOSABLE GLOVES FOR CORONAVIRUS

Note:  When buying anything online, please exercise good judgment especially in case of buying anything for protection against coronavirus also known as COVID-19. Please refer to the  CDC website  for accurate information. As the reaches of Coronavirus continue to spread across the globe, so has the need for care in how one engages with the outside world. Health personnel most especially have started to employ more as they come in contact with different kinds of people every day. If you are not a doctor however but you work in a line where you come in contact with different people and surfaces, you also have to exercise extreme caution in order to protect yourself from contracting the highly contagious virus. To guarantee your safety from Covid-19 then, we bring you the top ten of one of the most essential PPEs you will need in this season, the disposable gloves. Here they are: 1....