Apple unveils first-ever bug bounty programme

Apple unveils first-ever bug bounty programme

New York, Aug 5 (IANS) In a much-awaited move, tech giant Apple on Friday announced its first-ever bug bounty programme in which cash up to $200,000 will be handed over to researchers who discover vulnerabilities in Apple products.

Announcing this at the Black Hat cyber-security conference in Las Vegas, Apple’s Head of Security Engineering and Architecture, Ivan Krstic, said the programme will offer cash rewards for working exploits that target the latest version of iOS or the most recent generation of hardware, Tech Crunch reported.

Set for launch in September, the invitation-only bug bounty programme will be open to researchers who have previously made valuable vulnerability disclosures to Apple.

“However, Apple won’t turn away new researchers if they provide useful disclosures,” the report said.

The programme is limited to five bugs categories — the most valuable category is worth up to $200,000 for vulnerabilities that compromise the secure boot firmware components.

To be eligible, researchers will need to provide a proof-of-concept on the latest iOS and hardware.

Bug bounty programmes are increasingly becoming popular with tech companies.

Google, Microsoft, and Facebook have bug bounty programmes in place for years.

Google paid more than $2 million in bug bounties to researchers last year, mostly for Android vulnerabilities.

Leave a Reply

Please enter your comment!

The opinions, views, and thoughts expressed by the readers and those providing comments are theirs alone and do not reflect the opinions of www.mangalorean.com or any employee thereof. www.mangalorean.com is not responsible for the accuracy of any of the information supplied by the readers. Responsibility for the content of comments belongs to the commenter alone.  

We request the readers to refrain from posting defamatory, inflammatory comments and not indulge in personal attacks. However, it is obligatory on the part of www.mangalorean.com to provide the IP address and other details of senders of such comments to the concerned authorities upon their request.

Hence we request all our readers to help us to delete comments that do not follow these guidelines by informing us at  info@mangalorean.com. Lets work together to keep the comments clean and worthful, thereby make a difference in the community.

Please enter your name here