Security researcher uncovers Apple Hide My Email flaw exposing real addresses
A security researcher disclosed a flaw in Apple’s Hide My Email service that could reveal users’ real email addresses, 404 Media reported. The researcher explained that the vulnerability allows the actual address behind a generated alias to be extracted. Demonstrations showed that by submitting crafted queries, the hidden address could be retrieved.
Tests performed by the researcher indicated that the issue remained exploitable and had not been patched. Apple had not issued a fix for the problem at the time of the report.