• WhoIzDisIz@lemmy.today
      link
      fedilink
      arrow-up
      10
      ·
      edit-2
      16 days ago

      No detail given outside of it was disclosed to Apple a year ago, and - despite repeated gentle, respectful prodding - the problem still hasn’t been fixed, so now the people who found it are revealing to the public that it exists, and the website reporter says they confirmed it. Coincidentally(?), Apple recently said they’re going to change the way spoofed emails work - of course, the change will make it obvious it’s a spoofed address so it’ll be easy to reject them.

        • MrNobody@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          6
          ·
          16 days ago

          What was disclosed?

          The fact the is a vulnerability/exploit to get the true email address exists. Has now been publicly disclosed so people know it exists.

          What is the vulnerability?

          They aren’t going to disclose that publicly.