Security Report

Security news, analysis, expert opinions on cybersecurity and technology

“Sign in with Apple” vulnerability earns researcher $100,000

Ax Sharma June 2, 2020 1 min read

Apple

Remember seeing that slick “Sign in with Apple” button across many websites and apps? It turns out that a vulnerability allowed attackers to log in to sites using any Apple ID.

Only last year, Apple announced this new “privacy tool” to come to every iPhone and apps, in its quest to offer greater security to Apple users. The sign-in feature was introduced to let users log in to services with their Apple ID, as opposed to an email address and password.

Continue reading on BleepingComputer.

About the author

Ax Sharma

Ax Sharma is a Security Researcher, Engineer, and Tech Columnist. His works and expert analyses have frequently been featured by leading media outlets like Fortune, BleepingComputer, The Register, TechRepublic, CIO, etc.

Ax’s expertise lies in vulnerability research, reverse engineering, software development, and web app security. He’s an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).

News tips welcome via Twitter DM (@Ax_Sharma) or email (ax@hey.ax).

See author's posts

Tags: apple apps news security vulnerability

parques reunidos

Theme park giant Parques Reunidos hit by a ransomware cyber attack 3 min read

News

Theme park giant Parques Reunidos hit by a ransomware cyber attack

Ax Sharma March 7, 2023

gold letter y on black background

Phishing kit screenshots your email domain on the fly to appear real 3 min read

News

Phishing kit screenshots your email domain on the fly to appear real

Ax Sharma November 18, 2022

Royal Mail online tracking returns — with a frustrating captcha that works half the time 4 min read

News

Royal Mail online tracking returns — with a frustrating captcha that works half the time

Ax Sharma November 17, 2022

three brown wooden boat on blue lake water taken at daytime

New convincing phishing campaign targets Booking.com and Blockchain.com customers 2 min read

News

New convincing phishing campaign targets Booking.com and Blockchain.com customers

Ax Sharma November 10, 2022

A spreadsheet hosted on Intel.com is flagged as malware—but is it? 3 min read

Security

A spreadsheet hosted on Intel.com is flagged as malware—but is it?

Ax Sharma April 5, 2022

photo of train station

NS trains halted for hours after IT system ‘failure’ 2 min read

NS trains halted for hours after IT system ‘failure’

Ax Sharma April 4, 2022

parques reunidos

Theme park giant Parques Reunidos hit by a ransomware cyber attack 3 min read

News

Theme park giant Parques Reunidos hit by a ransomware cyber attack

Ax Sharma March 7, 2023

gold letter y on black background

Phishing kit screenshots your email domain on the fly to appear real 3 min read

News

Phishing kit screenshots your email domain on the fly to appear real

Ax Sharma November 18, 2022

Royal Mail online tracking returns — with a frustrating captcha that works half the time 4 min read

News

Royal Mail online tracking returns — with a frustrating captcha that works half the time

Ax Sharma November 17, 2022

three brown wooden boat on blue lake water taken at daytime

New convincing phishing campaign targets Booking.com and Blockchain.com customers 2 min read

News

New convincing phishing campaign targets Booking.com and Blockchain.com customers

Ax Sharma November 10, 2022