In February 2021, Frans Rosén, co-founder of Detectify and a Crowdsource hacker, discovered security vulnerabilities in Apple's CloudKit framework, which hosts public databases for many Apple apps. These misconfigurations allowed unauthorized access to modify and erase data in specific apps like iCrowd+ and Apple News, as well as unintentionally disrupting the Shortcuts app by deleting its default zone. This led to widespread issues with shared shortcuts across Apple devices, prompting immediate attention from Apple Security, who quickly remediated the vulnerabilities. Rosén responsibly disclosed these findings to Apple, leading to a public acknowledgment of the issue and his reward of $28,000. His exploration revealed how Apple's apps connect to CloudKit through various APIs, with different scopes defining access levels, and highlighted the importance of proper configuration to secure public and private data.