Richard Hyunho Im (richeeta)

Security Acknowledgements

Apple Product Security

CVE-2025-24225 — Mail Addressing Vulnerability

Credited for identifying a mail spoofing vulnerability that bypassed Mail’s sender identity verification.

CVE-2025-24198 — Siri Lock Screen Data Exposure

Credited for identifying a Siri vulnerability that allowed access to sensitive information on locked devices. Also credited for issues in Accessibility, Status Bar, and Writing Tools.

CVE-2024-44235 — Lock Screen Content Exposure

Credited for identifying a vulnerability that allowed restricted lock screen content to be viewed.

Additional Recognition (No CVE Assigned)

Credited for additional sensitive information disclosure bugs, UI transition flaws, and authentication bypasses.

OpenAI (#16 in August 2024)

Microsoft

Google

BBC