Delhi, June 3: Bhavuk Jain is a 27-year-old full time bug bounty hunter.
It means he spends all his time looking for security flaws and telling
companies about them. As you know, the Bug Bounty program is run by
most tech companies. You are paid when you find a security flaw and tell
the company about it.
On May 30th, Bhavuk found a problem with the new feature – Sign in with
Apple. He reported this issue to Apple. Apple quickly checked its logs to
ensure that no users were impacted because of this issue. After that, they
worked to patch (correct) the mistake.
To say ‘Thank You’ to Bhavuk, they will be paying him USD 100,000.
What really happens:
Just like you can use your Google id to sign into some apps, Sign in with
Apple allows you to sign in using your Apple id. Once you sign in, Apple gives you the choice to enter either your Apple id, or a random email id. You can give any email id at this point. Obviously, a hacker will enter their own email id and control this app for you!