Apple Extends Bug Bounty to $1M and Introduced Developer Devices
CONTACT

Apple Extends Bug Bounty to $1M and Introduced Developer Devices

Ashish Chauhan By Ashish Chauhan | August 10, 2019
Apple Bug Bounty Program

Apple has increased its bug bounty from $200,000 to $1Million.

Started three years back at Black Hat 2016 offers hackers the sizeable sum of $200,000 if they detect vulnerabilities in the iPhone system as a part of Apple’s bug bounty programme.

When the programme was launched, there were five different categories of risk and the offered bounty fell into the range of $25,000 to a maximum of $200,000.

Since then, around 50 serious bugs have been detected and reported. Seeing the success, Apple expanded its programme and raised the iPhone bounty to $1m. 

Also, this time around, the program is not kept restricted to invitation only members. Apple has opened the bug bounty programme for all security researchers.

Everyone will be able to report security bugs and in return will receive a monetary reward, which vary depending on the nature of vulnerability’s impact and the damage it can do to the device.

The iOS Security Research Developer Device

Just like with Apple’s Credit Card, the tech company keeps on experimenting to offer a flawless experience to the users. Similarly, ahead of the open bug bounty programme, Apple would provide the participants developer devices. The device will let them dive further into iOS than possible with their standard iPhones.

With these devices, hackers will be able to pause the processor in addition to examining the data in memory in greater depth. The handsets will come with a root shell, secure shell and advanced debugging capabilities making it easier for the researcher to spot bugs easily and efficiently.

According to The Verge, “While these special iPhone dev devices will be more open to security researchers, they won’t have the deep level of access that internal Apple developers and the company’s security team have.”

More about Bounty

Individuals, security researchers along with organizations, who are willing to get the $1m bounty reward will have to demonstrate that they can gain complete control of a phone without any interaction from the user.

And if a researcher is able to find out the vulnerability in pre-release builds even before a phone or a version of iOS is made available to the public, they will be entitled to a 50pc bonus on top of the amount for spotting a vulnerability in the first place.

At the Black Hat Conference held on the 8th of August, Apple also announced that it is expanding its existing bug bounty program to include Apple TV, macOS, Apple Watch, and iCloud. The program will include rewards of up to $1 m for a zero-click, full chain kernel code execution attack.
As per the report by TechCrunch, “Earlier, security researchers refused to report security flaws they encountered on macOS to Apple due to no financial incentive attached to them”.

Ashish Chauhan
Ashish Chauhan

Co-Founder and VP Mobile Architect at Appventurez. An expert programmer who is passionate and loves to explore emerging mobile technologies. As a leader, he is a perfect match as he is always there for the team to help and guide them to learn and implement smartly and effectively.

⚡️ by Appventurez

Leave a Reply

Please rate*

Your email address will not be published. Required fields are marked *

Hey there! This is Ashish, author of this blog. Leave your email address and we'll keep you posted on what we're up to.

This will subscribe you to Appventurez once-a-month newsletter. You can unsubscribe anytime. And we promise not to pester you or share your data :)

Hey there, wondering where this article came from? It was produced by some people at Appventurez, a Mobile & Web App Development Company. We are here for solutioning of your technological needs.

Our Latest Blog

what is the process of transforming ios app to android
How To Convert iOS App To Android?

Android and iOS - The bittersweet relation between the two trendsetters of the ...

Read more
10 Killer Tricks: How To Create A Lucrative Retail App In 2021

Whether you have a boutique in a beach town or a cosmetic store in the city, yo...

Read more
mobile app rewriting vs refactoring
Mobile App Rewriting Vs Refactoring: A Clash To Modernize A Legacy App!

Table Of Contents -Mobile App Rewriting Vs Refactoring: Both Are Not Synonym...

Read more

We’re your neighbor

Appventurez is a well known mobile app development company in the USA and India that works to build strong, long-lasting relations with its clients in different locations.

india flag appventurez
India (HQ)

Logix Infotech Park, 1st Floor, Plot No. D-5, Sector 59, Noida, Uttar Pradesh 201301

Inquiries : +91-9899 650980

5 Taunton Place Craigieburn VIC Australia

Inquiries : +1-815-283-8355

Office #216 Regus Tower Bank Street, Doha Qatar

Inquiries : +974-33497259

usa flag appventurez
USA

12501 W Chandler Blvd, Suite 200 Valley Village, CA 91607 USA

Inquiries : +1-888-822-1022

Rimal 5 Jumeirah Beach Residence 2 Dubai

Inquiries : +1-815-283-8355

south africa flag appventurez
South Africa

3 monterrey Complex, 63 Montrose Avenue, Northgate, Johannesburg, 2191

Inquiries : +27 737 810 945

7 Hanover House, Chapel Street, Bradford BD1 5DQ, United Kingdom

Inquiries : +1-815-283-8355

Netherlands flag appventurez
Netherlands

Amstelveen, Netherlands

Inquiries : +31-(0)-61-020-9692

Calle Ambar 2711, Av Victoria, 45089, Zapopan, Jalisco, Mexico

Inquiries : +521 332 393 9998

ghana flag appventurez
Ghana

North Industrial Area, Otublohum Road, Opposite Melcom Plus, Accra, Ghana

Inquiries : +27 737 810 945

appventurez worldwide presence
india flag appventurez
India (HQ)

Logix Infotech Park, 1st Floor, Plot No. D-5, Sector 59, Noida, Uttar Pradesh 201301

Inquiries : +91-9899 650980

5 Taunton Place Craigieburn VIC Australia

Inquiries : +1-815-283-8355

Office #216 Regus Tower Bank Street, Doha Qatar

Inquiries : +974-33497259

usa flag appventurez
USA

12501 W Chandler Blvd, Suite 200 Valley Village, CA 91607 USA

Inquiries : +1-888-822-1022

Rimal 5 Jumeirah Beach Residence 2 Dubai

Inquiries : +1-815-283-8355

south africa flag appventurez
South Africa

3 monterrey Complex, 63 Montrose Avenue, Northgate, Johannesburg, 2191

Inquiries : +27 737 810 945

7 Hanover House, Chapel Street, Bradford BD1 5DQ, United Kingdom

Inquiries : +1-815-283-8355

Netherlands flag appventurez
Netherlands

Amstelveen, Netherlands

Inquiries : +31-(0)-61-020-9692

Calle Ambar 2711, Av Victoria, 45089, Zapopan, Jalisco, Mexico

Inquiries : +521 332 393 9998

ghana flag appventurez
Ghana

North Industrial Area, Otublohum Road, Opposite Melcom Plus, Accra, Ghana

Inquiries : +27 737 810 945

10 Global Offices

Across 124 territories and 33.6k global workspace

700+ Worldwide clients

Largest International clients

24 x 7 Availability

Effective support, anytime