Apple Opens Its Invite-Only Bug Bounty Program to All Researchers

Apple Opens Its Invite-Only Bug Bounty Program to All Researchers”

The program is open for researchers with a proven track record of making impactful security-oriented contributions, with the goal being to make it easier for experienced bug hunters to work on Apple's devices.

In its current form, the scope of Apple's Security Bounty is limited to vulnerabilities in iOS and is open only to researchers approved by the Cupertino company.

The announcement was made by Ivan Krstic, Head of security engineering and architecture at Apple, during the annual Black Hat security conference in Las Vegas earlier this week. In a digital world where one skillful hacker can compromise the data of millions and cost the associated company in charge of that data billions, companies like Apple have always been heading this problem off at the pass by offering world-class hackers money upfront to point out flaws in operating systems and new devices that might not otherwise be caught by in-house designers. It's a fair compromise; it means Apple lets security researchers do their jobs with deeper access while keeping everyday users safe. This is for the disclosing and discovering the security flaws in tvOS, iCloud, watchOS, and macOS.

We've seen batteries improve by leaps and bounds in recent years, but even the best batteries wear out over time, and frugal owners know that replacing a battery in an otherwise-good phone is a smart move.

Apple is offering hackers up to $1 million to find vulnerabilities in their products.

Additionally, the tech giant also staked a 50 percent bonus for hackers who find vulnerabilities in its software before release. The handsets will come with ssh, a root shell, and advanced debug capabilities, all created to make it easier for security researchers to spot bugs.

According to fix specialists iFixit, the iPhones (XS, XR and XS Max) now show a "Service" message saying that the batteries need to be repaired, if they are not replaced by Apple. They are typically used internally to assess the security of sensitive internal components, such as the Secure Enclave Process responsible for encrypting data on the iPhone.

More importantly, however, for everybody else this is going to help to promote even more secure hardware and software coming out of Apple.

Another novelty for hackers looking for bugs in iOS is a platform specifically conceived for research purposes.

Apple raised the bounty from $200,000, and soon all researchers will get the chance to have a crack at the devices.

Like this



13 August 2019
Your phone can now verify you in Google Passwords
The new security and authentication method is based upon FIDO2 (Fast Identity Online 2) and WebAuthn protocol open standard. Not having to remember a password means this is a much more convenient way to log in, and it's also much more secure.

13 August 2019
Even DSLR cameras are vulnerable to ransomware
Though Check Point's research only examined the flaw in Canon cameras, cameras from other manufacturers could be affected as well. The report attributes the threat to Picture Transfer Protocol (PTP) used to transfer digital images from camera to PC.

13 August 2019
Ivorian Musician, DJ Arafat, Dies After Motorbike Accident
He was critically injured in the accident and later passed away after being transferred to an Abidjan hospital. During his lifetime, DJ Arafat was known for his dance-provoking sounds and energetic stage performances.

13 August 2019
Opposition Presidential Candidate Leading in Argentina's Sunday Primaries
But the Buenos Aires stock exchange shot up eight percent on Friday amid expectation that Macri would do well in Sunday's vote. On Sunday, Macri told supporters the primary vote was a "bad election" for his coalition ahead of the official results.

13 August 2019
Another weekend of unrest in Hong Kong
China has accused foreign powers, particularly the United States, of fomenting the demonstrations in Hong Kong. Hong Kong has experienced another weekend of unrest between pro-democracy protestors and police.

13 August 2019
Bolton says USA to 'move very quickly' on post-Brexit trade deal
But, after his meetings Bolton said talks on some of these thornier diplomatic issues could wait. "We want to move very quickly". British marines seized an Iranian vessel, which is suspected of smuggling oil to Syria, off the coast of Gibraltar on July 4.

13 August 2019
Contacts on iPhones vulnerable to hack attack
Google researchers shared the vulnerabilities with the iPhone maker, which fixed most of the flaws before they were made public. "Luckily for us, SQLite databases are not signed", the report quoted the Check Point researchers as saying.

13 August 2019
Myanmar: Monsoons trigger landslides, killing 51 people
As the rainy season reaches its peak, the country's armed forces are pitching in and have readied helicopters to deliver supplies. Precautionary measures will also be done as there is a sign of more landslides at the area, the official added.

13 August 2019
"The Fiend" Bray Wyatt def. Finn Bálor
The music along with the lighting effects made the Fiend feel like a horror movie monster and most importantly, a big star in WWE. Moments before Wyatt was set to debut, Code Orange tweeted revealing themselves as being the performers of the song.

13 August 2019
Decision on neutral venue for Davis Cup to be taken after Eid
Since 2017, Pakistan have played four of their five home ties in Islamabad, hosting Korea, Thailand, Uzbekistan and Iran. It's a genuine request. "In the current circumstances, it is not conducive to play there", he said.