At the annual eventBlack Hat Conference, dedicated to the global community InfoSec, Apple launched a program to reward those who discover Security vulnerabilities of own operating systems.
Apple's security engineer, Ivan Krstic, announced that the program for identifying vulnerabilities is dedicated to all individuals who discover bugs. Apple will pay sums of money for these discoveries, depending on the degree of security.
Until now, the big companies active in the field of IT and Internet, such as Google and Microsoft, have constantly offered rewards for hackers who managed to discover bugs and vulnerabilities in operating systems yes in software applications. Apple refused to do so until this year. It is a sign that Apple wants more and more to remain a leader in terms of systems and applications “safe”.
The new program launched by Apple is dedicated to everyone hackers, developers and cryptographers who wish to contribute to improving company security.
Apple will provide rewards up to $200,000 for developers, depending on the vulnerability they discovered. The more important this is, the more the reward amount will increase, but it will not exceed 200 thousand US dollars. The maximum amount can be reached for the discovery of firmware vulnerabilities, and for other smaller vulnerabilities, the amount will be 25,000 dollars.
Iata “CHARGES” for rewards offered by Apple:
Although each vulnerability is treated with utmost care, the reward amount will be determined according to the clarity of the vulnerability report, the novelty of the problem and the probability of user exposure to the discovered vulnerability and the degree of interaction with the user who can exploit the vulnerability.
The bug bounty program will be launched in September, most likely with the release of new models of iPhone and the new one iOS 10.
