Apple extends its bug bounty program to cover macOS with $1 million in rewards
Photo by Amelia Holowaty Krales / The Verge
Apple is finally rewarding security researchers for finding security flaws in macOS. At the Black Hat conference today, Apple announced that it is greatly expanding its existing bug bounty program to include macOS, tvOS, watchOS, and iCloud. It will include rewards of up to $1 million for a zero-click, full chain kernel code execution attack.
While Apple originally started paying iOS bounties three years ago, researchers have only been paid for ones found in Apple’s mobile operating system. macOS was never included, and it’s led to a number of security researchers pushing the company to change course. Apple is now expanding its bug bounty program far behind just iOS.
iCloud, iOS, tvOS,…