Apple Opens Lucrative Bug Bounty Programme to the Public, Details Rules

Apple Opens Lucrative Bug Bounty Programme to the Public, Details Rules

Apple has also defined the bounty categories in new rules

Highlights
  • The iPhone maker offers a maximum payout of up to $1 million
  • Until now, Apple ran an invitation-based bug bounty program
  • It has now made it more open, and reward researchers for discovering flaw

Apple has opened its previously-closed bug bounty programme for all security researchers wherein it will pay lucrative amount to those who find and report them to Apple Product Security, depending on the flaw discovered.

The iPhone maker’s bug bounty programme sees maximum payouts range between $100,000 to $1 million.

Apple has also defined the bounty categories which include bugs in the iCloud, device attacks via physical access, network attacks with user interaction among others.

Until now, Apple ran an invitation-based bug bounty program for selected security researchers only and was accepting only iOS security bugs, ZDNet reported on Friday.

Earlier this year, the iPhone maker offered special iPhones specifically for security researchers at the Black Hat security conference in Las Vegas.

Apple had launched its security bounty programme in 2016 and offered researchers up to $200,000 to find and report vulnerabilities in the system.

It is pertinent to note that Apple’s rival and tech giant Google also has a similar bounty scheme wherein it offers rewards for researchers and hackers.