Indian cybersecurity researcher Bhavuk Jain received a $100 reward for discovering a dangerous vulnerability in the Sign in with Apple feature. identifier.
We are talking about a vulnerability that could allow attackers to take control of victims' accounts in applications and services that used the Sign in with Apple tool for authorization. As a reminder, Sign In with Apple is a privacy-preserving authentication mechanism that allows you to sign in to third-party apps and services without revealing your email address.
The Sign in with Apple authentication process generates a JSON Web Token that contains sensitive information that a third-party application uses to verify the identity of the signed-in user. The exploitation of the mentioned vulnerability allowed an attacker to forge a JWT token associated with the identifier of any user. As a result, an attacker could be able to log in through the βSign in with Appleβ function on behalf of the victim in third-party services and applications that support this tool.
The researcher reported the vulnerability to Apple last month and has since been patched. In addition, Apple experts conducted an investigation during which no case was found when this vulnerability was used by attackers in practice.
Source: 3dnews.ru