Here's How To Get A Total Of $1 Million From Apple's Bug Bounty Program

Chitanis - Oct 04, 2019


Here's How To Get A Total Of $1 Million From Apple's Bug Bounty Program

Apple announced that its bug bounty program is being expanded, alongside a prize pool that competitors can earn up to $1 million.

Products made by Apple have been famous for being quite secure, they aren’t perfect though. In case you’re a white-hat hacker or an outstanding cybersecurity expert, and you also want to try other Apple services and devices beyond just iCloud and iOS, you can get plenty of money.

Picture1
Apple announced the expanded Bug Bounty Program at Black Hat conference

The director of security architecture and engineering of Apple - Ivan Krstic announced at the Black Hat security conference this year that the company’s bug bounty program is being expanded to include every major platform of Apple. What’s more, there is also an increase in the payouts for the program.

Picture2
The previous version of Apple’s bug program

Now, the bounty program in question covers not only iCloud, iPadOS, tvOS, watchOS, macOS, and iOS, but also all devices running on these mentioned operating systems. If you find a bug, you can earn up to 1 million USD – a considerable increase from 2 hundred thousand USD – the previous maximum. The high-value rewards for bugs which are disclosed include:

  1. One hundred thousand USD for bypassing lock screen or accessing high-value data of the user without authorization.
  2. Two hundred and fifty thousand USD for extracting user data or attacking high-value user data from CPU side-channel
  3. One hundred and fifty thousand USD for executing Kernel code or accessing high-value data of the user without authorization with one click
  4. Two hundred and fifty thousand USD for executing on-click Kernel code or attacking radio to kernel code as well as physical proximity network with no click.
  5. Five hundred thousand USD for accessing high-value data of the user without a click.
  6. One million USD for attacking by executing persistent and full-chain code with no user interaction

Picture3
The list of bugs and rewards in the program

Additionally, whoever finds bugs can get a fifty-percent bonus for vulnerabilities disclosure in builds that haven’t been released yet.

However, what is the reasons for Apple for increasing the payouts? It encourages more researchers about security to investigate products of Apple and at the same time makes it more profitable for these researchers to uncover the vulnerabilities to the company instead of selling them to groups of hackers who would rather use security flaws for bad purposes.

Picture4
Apple vastly expands security bounty program

If you have an interest in this bug bounty program, you should come to the official support website of Apple for privacy and security vulnerabilities in which there is more information about the program generally as well as detailed instructions for disclosing bugs.

Comments

Sort by Newest | Popular

Next Story

Read more

Google Pixel 5 & Pixel 4a 5G Won't Come To India, Google Confirms

Mobile- Aug 04, 2020

Google Pixel 5 & Pixel 4a 5G Won't Come To India, Google Confirms

Google Pixel 5 and Pixel 4a 5G have been officially confirmed to not come to India and Singapore, you will still have the Pixel 4a in October.

Amazon Will Launch Internet Satellites Too, Competing Directly With Elon Musk's SpaceX

ICT News- Aug 04, 2020

Amazon Will Launch Internet Satellites Too, Competing Directly With Elon Musk's SpaceX

Under its Project Kuiper, Amazon has the plan to launch 3236 internet satellites after obtaining FCC approval, according to the FCC’s official site.

Apple Confirms iPhone 12 Won’t Be Launched By September

ICT News- Aug 06, 2020

Apple Confirms iPhone 12 Won’t Be Launched By September

In Apple’s recent earnings call, the company’s CFO Luca Maestri confirmed that iPhone 12 series would be launched a little bit later this year.

Foldable Samsung Galaxy Z Fold2 Announced With Massive Upgrades

Mobile- Aug 06, 2020

Foldable Samsung Galaxy Z Fold2 Announced With Massive Upgrades

The new-gen Samsung Galaxy Z Fold2 comes with massive upgrades in multiple departments like design, performance, display, and cameras.

[Update] Horrific Lebanon Explosions Killed At Least 78 People, Injured 4,000 More Within Minutes

Features- Aug 05, 2020

[Update] Horrific Lebanon Explosions Killed At Least 78 People, Injured 4,000 More Within Minutes

Yesterday, several explosions destroyed Beirut, smashing a large part of the city within minutes, resulting in tens of deaths and thousands of injured.

Apple Chief Of Marketing Phil Schiller Replaced By His Former Deputy

ICT News- Aug 05, 2020

Apple Chief Of Marketing Phil Schiller Replaced By His Former Deputy

On Tuesday, Apple announced the departure of its marketing chief Phil Schiller. The position of vice president of worldwide marketing is now held by Greg Joswiak