Apple to launch Bug Bounty program, will pay up to $200,000 to hackers, cryptographers and researchers depending on bugs found
Date: Friday, August 5th, 2016, 07:27
Category: Developer, Hacks, iOS, macOS, News, security, Software, TvOS, Watch OS
Ok, this is pretty neat.
Yesterday at the Black Hat conference, an annual event designed for the global InfoSec community, Apple’s head of security engineering Ivan Krstic announced the launch of a bug bounty program that will see Apple paying money to individuals who discover major bugs and security flaws in the company’s software.
Many major technology companies like Google and Microsoft offer bug bounty programs to encourage people to discover and report major vulnerabilities, but until now, Apple has declined to provide a similar program.
The new program is part of an effort to open Apple’s software up to hackers, researchers and cryptographers who want to improve upon it and Apple will be offering up to $200,000 to researchers depending on the bug discovered. Secure boot firmware components will earn $200,000 at the high end, while smaller vulnerabilities, like access from a sandboxed process to user data outside of the sandbox, will earn $25,000.