Apple Security Bounty revamped: now invitation-free, with bigger rewards

The revamped bounty is open to all, with bigger rewards (Image source: Panda Security)

Apple recently revamped its Apple Security Bounty program. The new Bounty program is open to all researchers and substantially ups the reward ceiling. Is this enough to help Apple find critical iOS and macOS vulnerabilities in time?

Arjun Krishna Lal, Published 12/21/2019

Apple recently introduced substantial changes to its bug bounty program. Under the new terms, the Apple Security Bounty encourages all researchers-not just an invited few-to find and report bugs and vulnerabilities on Apple systems. The bug bounty applies to the entire range of Apple platforms.

While Apple has had a bug bounty program since 2016, participation was on an invite-only basis. Moreover, rewards were relatively low. The bounty has now been increased to a maximum of $1 million. A conditional 50% bonus applies, too, if vulnerabilities are reported during betas (so that they can be fixed before a public release).

As a corporate social responsibility gesture, Apple also says that if the discoverer of a bug decides to donate the money to a qualifying charity, they will match the amount.

All in all, the revised bounty terms are a step forward. They allow a wider range of researchers to approach Apple with potential vulnerabilities. Also, the rewards are now in line with the rates that Google and Microsoft offer.

Enhancing the bug bounty program is a smart move right now as new security vulnerabilities, such as checkm8, pose a significant risk to Apple owners. A wider range of researchers, including those involved with the jailbreak community, could provide Apple with much-needed security insights.

Source(s)

Apple

It's official: The Mac has a security problem 05/20/2021

According to a new rumor, every phone that can run iOS 13 will be able to run iOS 14. (Image via Apple)

Rumor claims iOS 14 will still support iPhone SE, iPhone 6S 01/26/2020

The FBI was unable to crack a mass shooter's iPhones

FBI asks Apple to help unlock two iPhones that belonged to a mass shooter 01/08/2020

ToTok is no longer available on the Play Store (Image source: Gulfnews)

ToTok, alleged UAE government spyware posing as a chat app, pulled from Play Store 12/26/2019

OnePlus has opened its OneSRC. (Source: OnePlus)

OnePlus opens its own paid security-incident bounty program 12/20/2019

Report a verifiable Titan M hack, get up to $1 million. (Source: F3News)

Google now offers a US$1 million bounty for Titan M chipset vulnerabilities 11/23/2019

iOS 13 had more software patches in its first two months than any other version of iOS released under Craig Federighi

Apple to change in-house testing process for iOS 14 development 11/22/2019

Loading Comments

Comment on this article

GoPro launches the Light Mod for th...

Physicality Games is an upcoming sa...

Arjun Krishna - Tech Writer - 623 articles published on Notebookcheck since 2019

I've had a passion for PC gaming since 1996, when I watched my dad score frags in Quake as a 1 year-old. I've gone on to become a Penguin-published author and tech journalist. Apart from working as an editor at Notebookcheck, I write for outlets including TechSpot and Gamingbolt. I’m the Director of Content at Flying V Group, one of the top 5 digital marketing agencies in Orange County. When I'm not traveling the world, gathering stories for my next book, you can find me tinkering with my PC.

contact me via: Facebook, LinkedIn

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2019 12 > Apple Security Bounty revamped: now invitation-free, with bigger rewards

Arjun Krishna Lal, 2019-12-21 (Update: 2019-12-21)

Apple Security Bounty revamped: now invitation-free, with bigger rewards

Source(s)

Related Articles