Sixcolors
Apple Hide My Email Vulnerability Exposes Users' Real Addresses
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
A vulnerability in Apple's Hide My Email service allows unauthorized individuals to uncover real email addresses behind generated aliases. Discovered by Tyler Murphy of EasyOptOuts, the flaw was reported to Apple in June 2025 but remains unpatched as of July 2026. Testing confirmed that 100% of Hide My Email addresses were exploitable. Apple acknowledged the issue but has not taken effective action, despite stating that a fix was expected in the coming weeks as of May 2026. Users relying on this feature for privacy may be at risk, as publicly accessible databases can link email addresses to personal details. The vulnerability raises significant concerns for users who depend on this service for anonymity.
Key Points: • A vulnerability in Apple's Hide My Email exposes real email addresses. • The flaw was reported in June 2025 but remains unpatched over a year later. • 100% of tested Hide My Email addresses were found to be exploitable.