Don weeksan makwanni, mun lura cewa a cikin yanar gizo daban daban da kuma ayyukan intanet na ɓangare na uku zamu iya "shiga" tare da namu Apple ID. Gaskiyar ita ce, a karo na farko da na gan shi, na murɗe hanci kuma ban kasance mai raha ba. Saboda waɗannan abubuwan tuni na sami asusun Gmel na "takarce", inda ban damu ba idan na sami spam saboda ban taɓa kallon sa ba.
Idan gaskiya ne cewa lokacin da Apple ya kafa wannan tsarin, ya tabbatar cewa sabis ɗin yanar gizon da ke amfani da shi bai sami bayanan mai amfani ba ko ƙyale shi ya aika spam. Amma ni, kawai idan dai, ban yi nufin amfani da shi ba. Yanzu mun san akwai tabarbarewar tsaro a cikin wannan tsarin kuma kamfanin ya sakawa mai gano kuskuren sosai.
Rashin lafiyar tsaro tare da "Shiga tare da Apple" na iya ba masu satar bayanan damar aiwatar da cikakken iko na asusun masu amfani da aka samu ta wannan tsarin. Abin farin cikin, mai binciken tsaro na kasar Indiya ya hango kwaro Bhavuk jain.
Kyautar $ 100.000
Ga falalar lambar 6 na farko daga @Apple. Rubutun blog zai tashi a mako mai zuwa. #bugbounty pic.twitter.com/QygxvtGYJb
Jain ain Jain (@ maikudin1) Bari 24, 2020
A cikin rubutun da aka wallafa a karshen mako, Jain ya lura cewa ya sanar da Apple game da yanayin rashin lafiyar a watan Afrilu. Da sauri daga Cupertino sun tabbatar da kuskuren kuma an warware shi. Godiya ga shirin alherin kwari na Apple, masanin kimiyyan komputa ya sami kyauta da shi 100.000 daloli kamar yadda godiya ga mahimman binciken da aka gano.
Kuskuren ya shafi matsala tare da alamun yanar gizo da aka kirkira yayin amfani da «Shiga tare da Apple»A cikin ayyukan yanar gizo na ɓangare na uku. Jain ya lura cewa yanayin rashin lafiyar ya sanya kowa ya iya neman alamomi don kowane ID ɗin imel na Apple. Hakanan za'a iya amfani dasu azaman alamu don tabbatar da ainihi. Wannan zai ba maharan damar zana wata alama ta haɗa ta da ID na Apple. Daga nan, baƙon zai sami cikakkiyar dama tare da kutse Apple iD.
Yawancin masu haɓakawa sun haɗa "Shiga tare da Apple" inda ake buƙatar asusu kuma suna da sauran hanyoyin shiga cikin jama'a. Misali, Facebook, Dropbox, Spotify, Airbnb, Giphy da dai sauransu.
Waɗannan ƙa'idodin na iya zama masu saukin kamuwa da cikakken asusu idan babu wasu matakan tsaro a wurin yayin da ake tabbatar da mai amfani. A cewar Jain, Apple ya gudanar da bincike kuma ya tabbatar da hakan ba asusu ya lalace ba saboda wannan shiga kafin gyara matsalar tsaro.