Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Apple announced a new, more diverse level of security bug detection bonus
As planned, Apple has just announced a new security bug bounty program, bringing up to $ 1 million or more for any security expert who can find vulnerabilities. large, serious appearances in the operating system as well as products of the software ecosystem of the company.
Apple's security bug bounty reward program, first announced in 2016, only applies to security researchers who receive iOS invitations and vulnerabilities. However, within the framework of the Black Hat global cybersecurity conference held in August, Apple disabled the program to expand this program, including more platforms of the Apple ecosystem such as iCloud, iPadOS, macOS, tvOS, watchOS, and especially unlimited number of participants. Of course, in order to receive the bounty, researchers must submit a detailed description of the flaw, including how they found it, how dangerous it is, and what to do to deal with it. .
The highest rewards will be in cases of discovering multi-platform vulnerabilities (affecting multiple Apple platforms at the same time), especially if this vulnerability has a negative impact on devices and parts. New soft launch of Apple. In case of finding a vulnerability in the beta version, the researcher will receive an additional 50% of the standard reward. A few bonus levels have been specified, including:
- $ 25,000 to $ 100,000 for data extraction vulnerabilities and bypassing the device's lock screen.
- $ 25,000 to $ 100,000 for vulnerabilities that allow unauthorized iCloud access.
- $ 100,000 to $ 250,000 for a vulnerability that allows sensitive data to be extracted from a locked device
- $ 1 million for vulnerabilities that allow an attacker to remotely control the device.
- $ 1 million for security could lead to a full-chain kernel code execution attack.
As such, the highest reward will be for zero-click vulnerabilities, allowing an attacker to hijack the device without the owner knowing it. However, to receive the bonus, you must send the full mining chain along with detailed reports to Apple.
Scaling up the security bug-finding program to receive bonuses is a necessary move, showing Apple's interest in contributions from outside resources, from product quality and user experience. will also be greatly improved.
Kareem WintersYou should read it
- Hack SIM: Things to know and how to avoid
- Demonstration of technology of ATM hack
- Hackers claim how good it is to hack Mark Zuckerberg's Facebook account?
- How to hack WiFi passwords with holes on WPA / WPA2
- 4 ways to hack Facebook you should know to protect your Facebook account
- The corner of getting rich: A company hung a $ 1 million prize for anyone who hacked WhatsApp and iMessage
- The latest iOS 11 has been hacked !!!
- Discover new ways to hack WPA3 protected WiFi passwords
May be interested
- How much time does the world spend watching live streams in 2019?
live streaming is one of the fastest growing services on the internet, contributing to the creation of a new type of career (streamer) and becoming the preferred form of entertainment for hundreds of million people. - Decode the super exclusive cooling fan design from the world famous graphics card brandshere is the information about proprietary propeller technology of major hardware companies asus, msi and gigabyte, inviting you to explore.
- Amazon, Apple, Google and ZigBee cooperate in the field of smart homesnow, the alliance of amazon, apple, google and zigbee is promising to offer a solution to this problem: it's working together! these companies have formed a joint collaboration group called project connected home over ip to create a standard for connecting all devices.
- Vulnerability detection on TP-Link routers allows an attacker to log in without a passworda serious security flaw affects some archer routers, which could allow potential attackers to control devices over a remote lan via a telnet connection without having to provide confidentiality. administrator password.
- Move the old 1700-ton church with a 256-wheeler truck 5km awayin order to protect the er-rizk church, a 609-year-old building, to avoid flooding, the engineers decided to place the 1,700-tonne project on a truck to move to a new place away from the old one. nearly 5 km.
- Google Search Android encounters strange errors, automatically escaping when users search for these keyword phrasesthe google search app for android has just encountered a 'bad cry and laugh' error.
Technology story
Post-thanks corner: Google, Microsoft award millions of dollars to white-hat hackers, Toyota, NEC say 'thank you'- Apple expanded the size of the security bug detection program to receive bonuses, including macOS, a maximum bonus of $ 1 million
- Google paid $ 3.4 million in bonuses for security flaws discovered in 2018
- Microsoft rewards $ 250,000 for any talent that discovers the new Meltdown and Specter vulnerabilities
- You will receive $ 7000 right from OnePlus if you do this
Post-thanks corner: Google, Microsoft award millions of dollars to white-hat hackers, Toyota, NEC say 'thank you'
Apple expanded the size of the security bug detection program to receive bonuses, including macOS, a maximum bonus of $ 1 million
Google paid $ 3.4 million in bonuses for security flaws discovered in 2018
Microsoft rewards $ 250,000 for any talent that discovers the new Meltdown and Specter vulnerabilities
You will receive $ 7000 right from OnePlus if you do this