Undiscovered Hijacking On iOS Apps Are Being Paid Up To $2 Million By Cybersecurity Companies

Indira Datta - Jan 10, 2019

Currently, hackers seem to be very interested and appreciate zero-day exploits on iOS platform applications.

Removing data from application vulnerabilities is extremely dangerous for users and is a persistent concern for application developers because it cannot be resisted. Zero-day is recently very valuable for hackers because there is no radical fix. Currently, hackers seem to be very interested and appreciate this type of exploitation on iOS platform applications.

Zerodium is a legitimate company that exploits these vulnerabilities. The company collects information about application vulnerabilities by negotiating with hackers. After that, they sell these data to companies willing to buy it.

On Monday, the company claimed it would pay as much as $2 million to developers of zero-click jailbreaks on iOS devices. Accordingly, users do not need to click on the link to be attacked. The company is also willing to pay $1.5 million to those who create one-click iOS jailbreaks and $1 million for control of the most-used messaging apps today including iMessage and WhatsApp.

The has dramatically risen since Zerodium's offer previously with $500,000,$ 1 million, and$ 1.5 million for exploits, one-click jailbreaks, and zero-click jailbreaks. The reason for such a large price increase may be due to the increasing of asking for zero-day exploitation. Plus hackers now have more difficulties in penetrating applications, software, and hardware.

The above cases show that technology companies should promote system protection by giving rewards to individuals or organizations that detect errors. Companies can't just depend on the company's budget security team or the sympathy of white-hat hackers.

The type of exploit Zerodium is aiming for is the current popular exploit of hackers to trick users into providing data and security credentials. Moreover, we do not know that we have been attacked and violated. In addition, this is also one of the methods that governments of many countries in the world use to monitor and detect criminal offenses, terrorists and wanted people.

The rewards for iMessage and WhatsApp is likely to have been doubled while that for Signal exploits (referred to as the most secure messenger) didn't change. In fact, these two applications are not really more difficult to crack than other applications but have a large number of users worldwide.