Vulnerability Management

Apple swiftly addresses major flaw that left developer, employee data exposed


Over the weekend, Apple addressed a serious security issue that left the contact information of developers and company employees, including some Apple executives, exposed.

According to a Monday 9to5Mac article, Apple pulled its Developer Center offline for maintenance on Sunday night to patch the hole.

Developer Jesse Järvi discovered the issue and alerted 9to5Mac on Saturday of the issue, along with sending the outlet a video of the exploit.

Järvi found that a flaw in Apple's Radar application could allow an intruder to access the data, including names, phone number and email addresses, of “every registered iOS, Mac, or Safari developer; every Apple Retail and corporate employee; and some key partners,” 9to5Mac revealed.

The Radar app, which could previously be downloaded from Apple's site, is an internal tool that helps Apple employees manage bug reports. Since addressing the issue, Apple reportedly removed the public download link.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.