Today, Apple has announced that its bug bounty program is now open to all safety researchers. Beforehand, the bug bounty program was invite-based and never accessible to all safety researchers. Now, anybody can disclose a vulnerability in iOS, WatchOS, macOS, tvOS, or iCloud to earn money rewards beneath this system.
Along with making its program out there for most of the people, Apple has additionally elevated the utmost payout from $200,000 to $1 million.
You possibly can earn the utmost bug bounty reward for disclosing a zero-click kernel code execution with persistence and kernel PAC bypass.
On prime of that, Apple has additionally added a 50% bonus to the usual payout when you occur to identify a bug in beta software program. This makes it the best reward in this system, amounting to $1.5 million.
Additionally, the bonus will probably be awarded for revealing ‘regressive bugs’ or these bugs that have been patched as soon as, however have resurfaced within the newest model of the software program. Nevertheless, it doesn’t apply to all developer betas and public betas.
Here’s a record of classes and the utmost payout being provided by Apple beneath its bug bounty program:
Apple has set the next pre-requisites for availing the money reward beneath its program:
- A safety researcher should be the primary to report the vulnerability to Apple Product Safety.
- A working exploit with a transparent report should be included.
- The reported vulnerability should not be disclosed to the general public earlier than Apple has launched the safety advisory for the report.
In case you handle to satisfy these standards, you can be eligible to win a money prize relying upon the complexity and severity of the vulnerability you’ve gotten reported.
Additionally Learn: How To Get Free Apple Music For 6 Months This Christmas?