$1 Million From Apple For Reporting Critical Security Issues In Company Products

Ruben Fields
August 13, 2019

"However, Check Point's researchers then managed to make a trusted app [the ubiquitous Contacts app] send the code to trigger this bug and exploit it".

Unfortunately for users, the SQLite database is not executable.

"Wait, what? How come a four-year-old bug has never been fixed?" write Check Point's researchers in their report. The bug could be triggered only by an unknown app accessing the database. Thankfully, Check Point security researchers believe that the exploit has not been used out in the public yet. On a walled-garden system like iOS, there are no unknown apps. This spread covers eight years of devices (iOS 8 supports the 2011 iPhone 4S) and, with Tim Cook stating there are 1.4BN active iOS devices around the world, this is worrying news for the owners of pretty much all of them.

This year alone has seen Apple exposed by a variety of flaws and vulnerabilities that could impact their users.

But now Apple wants everyone to know once again how really serious it's taking security that its willing to pay big time. All they needed was some tape, a pair of spectacles, and an unconscious or sleeping iPhone user.

Pittsburgh Steelers wide receivers coach Darryl Drake dead at 62
Both his cause and manner of death are pending, said Ken Bacha of the Westmoreland County coroner's office. Drake is survived by his wife, Sheila, daughters Shanice, Felisha and Marian, and two grandchildren.

Apple runs a very tight ship and, like it or not, iOS is considered one of the most secure platforms in the mainstream consumer market.

Recently, a group of hackers working for Google's Project Zero program uncovered a cache of flaws in Apple's software, which would allow hackers to gain access to your phone simply by sending you a message.

To boost the research and development on the security of iPhones, Apple Inc. has announced a bounty of $1 million to the hackers who can hack into their devices. In the past, the tech giant used to limit its bug bounty program to only a handful of friendly hackers.

The bug was reported back in 2015 against both Mac OS X and iOS but has remained unfixed on the iOS side. Principal security researcher at Jamf - who's found more than a few issues within the macOS - has said that "if you're a large, well-resourced company such as Apple, who claims to place a premium on security, having a bug-bounty program is a no brainer".

Other reports by

Discuss This Article