Here's How To Get A Total Of $1 Million From Apple's Bug Bounty Program

Chitanis - Oct 04, 2019


Here's How To Get A Total Of $1 Million From Apple's Bug Bounty Program

Apple announced that its bug bounty program is being expanded, alongside a prize pool that competitors can earn up to $1 million.

Products made by Apple have been famous for being quite secure, they aren’t perfect though. In case you’re a white-hat hacker or an outstanding cybersecurity expert, and you also want to try other Apple services and devices beyond just iCloud and iOS, you can get plenty of money.

Picture1
Apple announced the expanded Bug Bounty Program at Black Hat conference

The director of security architecture and engineering of Apple - Ivan Krstic announced at the Black Hat security conference this year that the company’s bug bounty program is being expanded to include every major platform of Apple. What’s more, there is also an increase in the payouts for the program.

Picture2
The previous version of Apple’s bug program

Now, the bounty program in question covers not only iCloud, iPadOS, tvOS, watchOS, macOS, and iOS, but also all devices running on these mentioned operating systems. If you find a bug, you can earn up to 1 million USD – a considerable increase from 2 hundred thousand USD – the previous maximum. The high-value rewards for bugs which are disclosed include:

  1. One hundred thousand USD for bypassing lock screen or accessing high-value data of the user without authorization.
  2. Two hundred and fifty thousand USD for extracting user data or attacking high-value user data from CPU side-channel
  3. One hundred and fifty thousand USD for executing Kernel code or accessing high-value data of the user without authorization with one click
  4. Two hundred and fifty thousand USD for executing on-click Kernel code or attacking radio to kernel code as well as physical proximity network with no click.
  5. Five hundred thousand USD for accessing high-value data of the user without a click.
  6. One million USD for attacking by executing persistent and full-chain code with no user interaction

Picture3
The list of bugs and rewards in the program

Additionally, whoever finds bugs can get a fifty-percent bonus for vulnerabilities disclosure in builds that haven’t been released yet.

However, what is the reasons for Apple for increasing the payouts? It encourages more researchers about security to investigate products of Apple and at the same time makes it more profitable for these researchers to uncover the vulnerabilities to the company instead of selling them to groups of hackers who would rather use security flaws for bad purposes.

Picture4
Apple vastly expands security bounty program

If you have an interest in this bug bounty program, you should come to the official support website of Apple for privacy and security vulnerabilities in which there is more information about the program generally as well as detailed instructions for disclosing bugs.

Next Story

Read More

How To Use macOS Catalina's Voice Control Function

How To- Oct 21, 2019

How To Use macOS Catalina's Voice Control Function

If you have trouble mastering the voice control feature or just want to save some time breaking into on your own, here is our guide to help you

Vivo V17 Pro Review: Immersive Display, Quad-Camera Setup

Review- Oct 21, 2019

Vivo V17 Pro Review: Immersive Display, Quad-Camera Setup

In a word, the Vivo V17 Pro owns a few but intriguing upgrades.

Your Smart Speaker Will Monitor Your Sleeping Baby's Movement And Breathing

Features- Oct 21, 2019

Your Smart Speaker Will Monitor Your Sleeping Baby's Movement And Breathing

The smart speaker has long been used in daily lives to play music, check the weather forecast as well as search things online. Now, they can do more.

Ultrasonic Pressure-Sensitive Is The Technology For Your Next Phone

Features- Oct 21, 2019

Ultrasonic Pressure-Sensitive Is The Technology For Your Next Phone

You may have seen wearables and phones that have touch-sensitive areas, but have you ever seen a phone case completely become a touch surface?

Sophos Found 15 Malicious Apps That Can Hide Their Icons From Users

ICT News- Oct 19, 2019

Sophos Found 15 Malicious Apps That Can Hide Their Icons From Users

According to Google Play Store app pages, over 1.3 million mobile devices have downloaded 15 malicious apps

Google To Patch A Flaw That Lets iPhone Users Have Free Storage On Google Photos

ICT News- Oct 21, 2019

Google To Patch A Flaw That Lets iPhone Users Have Free Storage On Google Photos

According to Android Police, the flaw of Google Photos allows iOS users to have images stored in their original quality without considering the 15GB limit