'Sign in with Apple' flaw let attackers take over accounts



‘Sign in with Apple’ is potentially more private than other login options, but it apparently included a serious security flaw. Researcher Bhavuk Jain recently received a $100,000 bug bounty for discovering (via Hacker News) a flaw in the sign-in service when available through third-party apps.

from Pocket https://www.engadget.com/sign-in-with-apple-account-takeover-flaw-003450962.html
via CCTV and Alarm Installers

Comments