The US tech giant launched its rewards program for security vulnerabilities in its systems for the first time in 2016, but the program has since been available only on the invitations system, and was limited to iOS, the operator of its mobile devices. But now it is available to everyone, and the company has expanded the software to include its other systems, including: iCloud, iPadOS, macOS, tvOS, and watchOS.
Apple explained that security researchers should submit a detailed description of the vulnerability, as well as sufficient details to allow the company to reproduce it. She also mentioned that the higher financial rewards will be for those who discover dangerous gaps that affect more than one of the company’s platforms, especially if the gap affects the latest products of the company.
A security researcher who discovers a gap in beta versions of Apple’s systems will receive a 50% premium to the bonus value. A researcher who is able to bypass the lock screen and obtain unauthorized access to iCloud’s service will receive a reward between $ 25,000 and $ 100,000. Those who can extract sensitive data from a locked device will receive a prize ranging between $ 100,000 and $ 250,000. The grand prize is awarded to anyone who can produce attacks that take over the device without any user action.
It is believed that the timing of the expansion of the rewards program from Apple may be partly in response to the problems that have become many in iOS13.
Last November, Bloomberg reported that in the run-up to the launch of iOS13 in 2020, Apple changed the way it tests software to be more in line with what other companies, such as Google and Microsoft, are doing.