Apple expands bug bounty programme to all devices

Apple expands bug bounty programme to all devices

Ivan Krstić, Apple's head of security engineering and architecture revealed that in Apple's quest to minimize if not completely eliminate the hacking and jailbreaking, the company has increased the incentives that hacker will get. Apple's new bounties, however, are in the same range as some published prices from contractors.

Apple is also expanding its bug-bounty program, which it launched three years ago, to include its Mac, Apple Watch, and Apple TV operating systems as well as iOS.

Apple gave out details about its new iOS Security Research Device program, which will be out next year.

Besides, iOS bugs rewards have also been bumped up to $1 million for vulnerabilities that could let attackers control a device without any user interaction. Rewards were initially set at up to Dollars 200,000, and Apple has now increased that to USD 1 million for detecting any method for remote attacks on iOS. However, this the iOS security research device program is available only to researchers who have great experience in security research on any platforms.

For researchers who discover vulnerabilities in betas and pre-release software packages, a 50% bonus payout is offered on top, meaning a large-scale bug could net a researcher up to $1,500,000 in the most extreme of circumstances.

More news: Trump thumbs-up photo with orphaned baby in El Paso sparks controversy
More news: Moment Princess Charlotte sticks tongue out at Royal boat race
More news: Stream Megan Thee Stallion 'Hot Girl Summer,' Featuring Nicki Minaj

Apple first launched its bug bounty program, in 2016. The exclusive handsets will come with ssh, a root shell, and advanced debug capabilities. The company distributed hacker-friendly iPhones to their favorite researchers so that they can go and try to hack the devices at the lightest approach possible.

Unlike other technology providers, Apple previously offered rewards only to invited researchers who tried to find flaws in its phones and cloud backups.

The Verge wrote: "While these special iPhone dev devices will be more open to security researchers, they won't have the deep level of access that internal Apple developers and the company's security team have".

However, it's not just Apple that has announced such a big reward. "Considering the importance of a bug like this to Apple's business and the size of their cash hoard, this sounds like they don't actually care that much".

Related Articles