Apple Offers $1m To Anyone Who Can Hack An iPhone

Share

In the past, Apple limited its bug bounty program to a restricted list of friendly hackers, but it has now opened up the reward to everyone.

San Francisco: Apple has never shied away from boasting about how secure its systems are, but researchers have found that contacts saved on iPhones are vulnerable to an SQLite hack attack which could infect the devices with malware. One such hole would let an attacker "search" for something in the Contacts app to execute arbitrary code and researchers are pointing to Apple's oversight as the reason this bug has existed for four years.

But Check Point has proved that isn't the case, replacing a component in the Contacts app directly.

The vulnerability has been identified in the industry-standard SQLite database. All it takes is a different, sometimes unrelated bug to modify the Contacts app from afar. But the usage is so versatile that they can trigger it on so many levels.

Apple remains committed to user privacy and security.

Apple has put forward some terms and conditions to redeem the top prize which requires specific hacks that show the loophole to enter the platform without distorting the administrative file and verification system. Allegedly, it'll be announced later this week, at the Black Hat security conference in Las Vegas, that Apple will be giving these "security researchers" special iPhones that will make it easier for them to find faults in the smartphone.

More news: Pop superstars BTS to take 'long-term break'
More news: NFL claps back amid Antonio Brown helmet controversy
More news: Tebow's baseball season ends again with injury

But now Apple wants everyone to know once again how really serious it's taking security that its willing to pay big time. One of the bugs allowed hackers to gain access to your iPhone or iPad by sending you a text message.

To be fair, the bug isn't in Apple's code per se.

The bug was reported back in 2015 against both Mac OS X and iOS but has remained unfixed on the iOS side.

But the Google hackers quietly shared the details with Apple, which fixed the flaws before the details were made public.

Unlike other tech companies, Apple had previously only offered rewards to "invited researchers who tried to find flaws in its phones and cloud backups".

Share