A security vulnerability with “Sign in with Apple” could have allowed hackers to carry out a full account takeover of user accounts accessed using the feature. Fortunately, the bug was spotted by India-based security researcher Bhavuk Jain.
In a blog post published over the weekend, Jain noted that he made Apple aware of the vulnerability back in April. It was subsequently fixed. Thanks to Apple’s bug bounty program, he was then paid $100,000 as a thank you from the Cupertino tech giant.