Tuesday, October 27, 22:51
Home security Apple: Offers $ 1.5 million in its new bug bounty program

Apple: Offers $ 1.5 million in its new bug bounty program

AppleΗ Apple decided to increase researchers' pay in its bug bounty program and give up $ 1,47 million for discovering exploits, bypassing embedded mechanisms security the company's.

The program Security Bounty Apple started last year and was only for mobile phones. Initially, only specific individuals could participate researchers (Trusted).

However, now the program is available to the general public. It also includes all functional systems Apple (iPadOS, macOS, tvOS, watchOS).

Apple was named for the "mysticism"Which he maintained in relation to the inner mode of its systems. Therefore, inviting top security researchers to breach and analyze its platforms is a big step for company.

The fees for finding exploits vary depending on their severity and complexity. For example, bypassing the lock screen one iPhone and the theft of some basic personal data could offer the investigator $ 25.000. Widespread unauthorized account access iCloud, hosted at servers of the company, could offer $ 100.000.

Apple is willing to give up to $ 250.000 for network attacks that allow it executing malicious code on devices (usually observed during installation attempts ransomware or other malware).

The highest pay will be given to researchers who succeed to find and understand their vulnerabilities and their exploitation techniques. Apple's main goal is to find vulnerabilities 'Zero-click' posing to you risk a Mac, iPhone or any other device without any action by the victim.

Also, the company said there will be some bonus.

More and more companies are launching Bug-bounty programs as cyber threats continue to grow.

Some of the biggest technology companies, such as Microsoft and Google, carry out public bug-bounty programs. This has somehow created a new job. The bug bounty programs are sources of additional income for security researchers.

These programs and the big payoffs have another purpose beyond what most people think. Companies hope that with the big pay will encourage potential cybercriminals to share their new exploits in programs rather than publish them widely on Internet.


Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement



Data breach in a law firm exposes data of Google employees

Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP revealed that it suffered a data breach that led to the leakage of personal data ...

How to install a .watchface file on Apple Watch

The Apple Watch lets you customize the faces of the watch to display all kinds of useful information. But did you know ...

The five biggest data breaches of the 21st century

Data is becoming more and more sought after as our daily lives become more digitized. The technology giants that monopolize data are ...

Microsoft is limiting the availability of Windows 10 20H2

Microsoft is currently restricting the availability of Windows 10 20H2 to provide all users who want to ...

How to enable the new Chrome Read more feature

The latest version of Google Chrome browser, v86, released earlier this month, contains a secret feature called Read ...

How to choose a custom color for the Start menu

Starting with the October 2020 update, Windows 10 is the default on a theme that removes bright colors from ...

NASA telescope discovers drinking water on the moon

Eleven years ago, a spacecraft changed our view of the moon forever. The data collected by ...

Microsoft: Enhances password spray attack detection capabilities

Microsoft has significantly improved the ability to detect password spray attacks in the Azure Active Directory (Azure AD) and has reached the point ...

How to prevent companies from finding our phone number

In the age of advertising, the more user information is known the more convenient it is for companies. And in particular, the ...

Violation in a psychotherapy clinic led to blackmail of patients

Two years ago, a cyber attack took place in a Finnish psychotherapy clinic, which resulted in data theft and ransom demand. Now,...