Apple Awarded Hacker $100,000 for Discovering 'Sign in with Apple' Vulnerability

SHARE:

Apple Security Bounty- Apple Pays Indian Hacker $100,000 For Discovering Serious 'Sign In With Apple' Vulnerability.

Sign in with Apple
Apple Pays Indian Hacker $100,000 For Discovering Serious 'Sign In With Apple' Vulnerability.

Apple Security Bounty

As a part of Apple's Security Bounty, The Tech Giant Apple pays a 27-year-old Indian security researcher Bhavuk Jain $100,000 (over Rs 75.5 lakh) for discovering a now-patched Zero-Day vulnerability in the 'Sign in with Apple' account authentication.
Apple's useful 'Sign in with Apple' option was introduced in June 2019 as a part of iOS13 received a fair bit of positive attention, and for good reason: it replaces social logins with a secure authentication system. On top of that, a user can sign up with third-party apps and services without needing to share their Apple ID email address.

'Sign in with Apple' Vulnerability


The Zero-Day vulnerability could have allowed a hacker to break into an Apple user's account who logs into third-party apps like Dropbox, Spotify, Airbnb, and Giphy (now acquired by Facebook) and more.

Moreover, Apple has already has cleared up the hassle on its server-side, and only after this was done did Bhavuk Jain, the man who disclosed the bug to Apple, publish his disclosure of the shocking security vulnerability online on May 30.

According to Bhavuk Jain, the 'Sign in with Apple' works similarly to 'OAuth 2.0'.
  • "There are two possible ways to authenticate a user by either using a JWT (JSON Web Token) or a code generated by the Apple server. The code is then used to generate a JWT," he explained.
  • In the second step, while authorizing, Apple gives an option to a user to either share the Apple Email ID with the third-party app or not.
If the user decides to hide the Email ID, Apple generates its own user-specific Apple relay Email ID.
"Depending upon the user selection, after successful authorization, Apple creates a JWT which contains this email ID which is then used by the 3rd party app to log in a user," - According to Bhuvan Jain.
He found that he could request JWTs for any email ID from Apple and when the signature of these tokens was verified using Apple's public key, they showed as valid.

"This means an attacker could forge a JWT by linking any Email ID to it and gaining access to the victim's account," Jain noted.

The impact of this vulnerability was quite critical as it could have allowed a full account takeover.

COMMENTS

Name

android,6,android-11,6,apple,2,gadgets,2,gaming,2,how-to,26,news,21,reviews,3,security,2,tech,25,top-list,4,wearables,1,windows,8,
ltr
item
TechFosser | All Tech News Blog: Apple Awarded Hacker $100,000 for Discovering 'Sign in with Apple' Vulnerability
Apple Awarded Hacker $100,000 for Discovering 'Sign in with Apple' Vulnerability
Apple Security Bounty- Apple Pays Indian Hacker $100,000 For Discovering Serious 'Sign In With Apple' Vulnerability.
https://1.bp.blogspot.com/-NaILFUrVyQs/XtZrqbE1cnI/AAAAAAAALo8/nhJkAyNCWrQwlu9ElswY2TyfjmxO1FceACLcBGAsYHQ/s1600/Sign%2Bin%2Bwith%2BApple.png
https://1.bp.blogspot.com/-NaILFUrVyQs/XtZrqbE1cnI/AAAAAAAALo8/nhJkAyNCWrQwlu9ElswY2TyfjmxO1FceACLcBGAsYHQ/s72-c/Sign%2Bin%2Bwith%2BApple.png
TechFosser | All Tech News Blog
https://www.techfosser.com/2020/06/apple-awarded-hacker-100000-for-discovering-sign-in-with-apple-vulnerability.html
https://www.techfosser.com/
https://www.techfosser.com/
https://www.techfosser.com/2020/06/apple-awarded-hacker-100000-for-discovering-sign-in-with-apple-vulnerability.html
true
3292701734101357037
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content