A major evolution of Apple Security Bounty
11 hours ago
- #BugBounty
- #Apple
- #Cybersecurity
- Apple Security Bounty program has awarded over $35 million to more than 800 security researchers since 2020.
- Top award doubled to $2 million for exploit chains similar to mercenary spyware attacks, with potential maximum payout exceeding $5 million.
- New bounty categories include one-click WebKit sandbox escapes (up to $300,000) and wireless proximity exploits (up to $1 million).
- Introduction of Target Flags to objectively demonstrate vulnerabilities and qualify for accelerated awards.
- Updates to the program, including expanded categories and rewards, will go into effect in November 2025.
- Apple continues to enhance security defenses with features like Lockdown Mode and Memory Integrity Enforcement.
- Special initiatives include providing iPhone 17 devices with Memory Integrity Enforcement to civil society organizations.
- 2026 Security Research Device Program includes iPhone 17 devices for researchers with proven track records.