https://www.theverge.com/2022/9/27/23375939/fast-company-apple-news-notification-hack
Apparently their security was worse than Uber, a different domain bypassed their wordpress basic auth, leaving just wp admin login. And there were some really shitty passwords like “king123” or something
OH YEAH AHAHAHA I lost my shit when I saw it