HACKINTOSH.ORG | Macintosh discussion forums

Apple announces its first security bounty program at Black Hat 2016 with up to $200K payouts

<div class="feat-image">(https://9to5mac.files.wordpress.com/2016/08/apple-black-hat-bug-bounties.png?w=1600&h=1000#038;h=500)</div>
<p>Apple hasn’t often made appearances at the Black Hat hacker conference, but this year Cupertino is Thinking Different™ about security.  Head of Apple security, Ivan Krstic, today said the company would pay huge (up to $200K) bug bounties to invited researchers who find and report vulnerabilities in certain Apple software.</p>
<p><img title="Apple announces its first security bounty program at Black Hat 2016 with up to $200K payouts" class="alignright wp-image-441265" src="https://9to5mac.files.wordpress.com/2016/08/screenshot-2016-08-04-21-04-28.png?w=300&h=155" alt="Screenshot 2016-08-04 21.04.28" width="300" height="155" />A quick breakdown of max. payments:</p>
<ul>
<li>Secure boot firmware: $200,000</li>
<li>Extraction of confidential material protected by the Secure Enclave Processor: $100,000</li>
<li>Execution of arbitrary code w/kernel privs: $50,000</li>
<li>Unauthorized access to iCloud account data on Apple Servers: $50,000</li>
<li>Access from a sandboxed process to user data outside of that sandbox: $25,000</li>
</ul>
<p>Earlier this year, the FBI paid out under $1M to extract the data from the San Bernardino terrorist’s iPhone (http://9to5mac.com/2016/04/28/report-fbi-actually-paid-less-than-1-million-for-tool-to-unlock-san-bernardino-iphone/). Perhaps Apple is trying to eliminate these lucrative back doors into its crown jewel software.  <a href="http://9to5mac.com/2016/08/04/apple-announces-its-first-security-bounty-program-at-black-hat-2016-with-up-to-200k-payouts/#more-441263" class="more-link">more…[/url]</p>
Filed under: <a href='http://9to5mac.com/category/apple/'>Apple[/url]  <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gocomments/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/comments/9to5mac.wordpress.com/441263/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/godelicious/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/delicious/9to5mac.wordpress.com/441263/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gofacebook/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/facebook/9to5mac.wordpress.com/441263/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gotwitter/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/twitter/9to5mac.wordpress.com/441263/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gostumble/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/stumble/9to5mac.wordpress.com/441263/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/godigg/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/digg/9to5mac.wordpress.com/441263/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/goreddit/9to5mac.wordpress.com/441263/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/reddit/9to5mac.wordpress.com/441263/" />[/url] <img alt="" border="0" src="(http://[img]http://pixel.wp.com/b.gif)[/img]?host=9to5mac.com&blog=22754319&post=441263&subd=9to5mac&ref=&feed=1" width="1" height="1" /><img alt="" border="0" src="(http://[img]http://pixel.wp.com/b.gif)[/img]?host=9to5mac.com&blog=22754319&post=441263&subd=9to5mac&ref=&feed=1" width="1" height="1" /><div class="feedflare">
<img src="http://feeds.feedburner.com/~ff/9To5Mac-MacAllDay?i=uCuhJdgmpyo:1xUNQ8cE6PU:D7DqB2pKExk" border="0"></img> (http://feeds.feedburner.com/~ff/9To5Mac-MacAllDay?a=uCuhJdgmpyo:1xUNQ8cE6PU:D7DqB2pKExk)
</div><img src="http://feeds.feedburner.com/~r/9To5Mac-MacAllDay/~4/uCuhJdgmpyo" height="1" width="1" alt=""/>

Source: Apple announces its first security bounty program at Black Hat 2016 with up to $200K payouts (http://feedproxy.google.com/~r/9To5Mac-MacAllDay/~3/uCuhJdgmpyo/)