Apple Announces $2M Bug Bounty
Apple will offer a top reward of up to $2 million to researchers who uncover software exploit chains that could be used for spyware attacks, said Ivan Krstic, Apple’s vice president of security engineering and architecture.
At the Hexacon offensive security conference in Paris, Krstic unveiled the new bug bounty payout structure, stating that total rewards could surpass $5 million with extra bonuses for discovering Lockdown Mode bypasses or vulnerabilities in beta software.
"We are lining up to pay many millions of dollars here, and there’s a reason," Krstic told Wired. "We want to make sure that for the hardest categories, the hardest problems, the things that most closely mirror the kinds of attacks that we see with mercenary spyware—that the researchers who have those skills and abilities and put in that effort and time can get a tremendous reward."
An Apple Store in Wuhan, China, in April 2024.
Author's summary: Apple offers $2M bug bounty for security exploits.