Key facts
- A bug in Apple's Hide My Email feature reportedly exposes users' real email addresses.
- A researcher claims to have reported the vulnerability to Apple over a year ago.
- The bug could put users at risk, especially those relying on the feature for safety.
- The feature is designed to create unique, random email addresses that forward to a user's real inbox.
- The bug's existence potentially undermines the privacy function of Hide My Email.
A security researcher has reported a significant bug within Apple's Hide My Email feature, alleging that it exposes users' actual email addresses. The vulnerability was reportedly disclosed to Apple more than a year ago, yet it appears to remain unaddressed. This flaw could undermine the core privacy function of Hide My Email, which is designed to create unique, random email addresses that forward to a user's real inbox, thereby masking their identity and personal contact information. The researcher expressed concern that individuals who depend on this feature for safety, such as those in vulnerable situations or seeking to maintain anonymity, could be at risk of having their true email addresses revealed. The continued existence of this bug raises questions about Apple's response to security disclosures and its commitment to protecting user privacy through its services. The implications of such an exposure could range from increased spam to more serious privacy violations, depending on how the exposed email addresses are used or targeted.
