At the Black Hat conference that took place last week, an annual event created for the InfoSec community, Ivan Krstic, Apple's chief security engineer, announced the launch of a new program with which those of Cupertino pay people who discover bugs and vulnerabilities important security features in the company's software. How much? Well, nothing less than $ 200.000.
This is the first time that Apple has paid to find these types of bugs, but it is not a new program. Other companies responsible for major operating systems, such as Google (Android) and Microsoft (Windows), have already released their bug bounty programs with which they pay large sums of money to any user who finds this type of flaw in their operating systems.
Finding vulnerabilities in Apple software has a prize
The new program bug bounty Apple is part of the company's effort to open up to hackers, security researchers, and cryptographers who want to help improve company security.
The prize of 200.000$ not just any discovery will take it, but it is the maximum that those of Cupertino will pay for finding security flaws in their software. In this way, the fifth of a million dollars will go to the finders of faults in firmware components Secure bootWhile other smaller vulnerabilities, such as sandboxed access to user data outside of the sandbox, will receive "only" $ 25.000.
The new program will launch in sometime in september, just the month in which iOS 10 will be officially released. We remember that the next version of iOS, at least in the current betas, does not have the encrypted kernel. Apple, like other security specialists, says that security will not be compromised and that security flaws will be found and corrected sooner. The best example is Ubuntu, a system that is more secure than iOS and does not have the encrypted kernel either. In addition, they have also promised that they will release more updates, something that fans of the jailbreak will undoubtedly not like.
I already found a way to be a millionaire.