Apple Launches Bug Bounty Program, Offers Up to $200,000 for Software Vulnerabilities Discovered - MacRumorsOpen MenuShow RoundupsShow Forums menuVisit ForumsOpen Sidebar
Skip to Content

Apple Launches Bug Bounty Program, Offers Up to $200,000 for Software Vulnerabilities Discovered

by

At today's Black Hat Conference, an annual event designed for the global InfoSec community, Apple's head of security engineering Ivan Krstic announced the launch of a bug bounty program that will see Apple paying money to individuals who discover major bugs and security flaws in the company's software.

Many major technology companies like Google and Microsoft offer bug bounty programs to encourage people to discover and report major vulnerabilities, but until now, Apple has declined to provide a similar program.

applebugbounty


According to TechCrunch, Apple's new bug bounty program is part of Apple's effort to open up to hackers, researchers, and cryptographers who want to help improve the company's security.

Apple will be offering bounties of up to $200,000 to researchers depending on the vulnerability that's discovered. Secure boot firmware components will earn $200,000 at the high end, while smaller vulnerabilities, like access from a sandboxed process to user data outside of the sandbox, will earn $25,000.

Although each category of vulnerability maxes out at the given rate, Apple will determine the exact reward amount based on several factors: the clarity of the vulnerability report; the novelty of the problem and the likelihood of user exposure; and the degree of user interaction necessary to exploit the vulnerability.

Apple plans to launch its new bug bounty program in September. To be eligible for a reward as part of the program, researchers will need to provide proof-of-concept on the latest versions of iOS and the company's newest hardware. Apple will also encourage researchers to donate their earnings to charity and will match all bug bounty donations.

The program will be invite only for the time being, limited to a few dozen researchers. Apple plans to make it more open as it grows, and if a non-member discovers a significant bug, they'll be invited to the program.

Popular Stories

imac video apple feature

Apple Released Yet Another New Product Today

Friday March 20, 2026 2:39 pm PDT by
Apple has unveiled a whopping nine new products so far this March, including an iPhone 17e, iPad Air models with the M4 chip, MacBook Air models with the M5 chip, MacBook Pro models with M5 Pro and M5 Max chips, the all-new MacBook Neo, an updated Studio Display, a higher-end Studio Display XDR, AirPods Max 2, and now the Nike Powerbeats Pro 2. iPhone 17e features the same overall design as...
Read Full Article
iPhone 18 Pro Deep Red Feature

iPhone 18 Pro Launching Later This Year With These 12 New Features

Wednesday March 18, 2026 7:39 am PDT by
While the iPhone 18 Pro and iPhone 18 Pro Max are not expected to launch for another six months or so, there are already plenty of rumors about the devices. It was initially reported that the iPhone 18 Pro models would have fully under-screen Face ID, with only a front camera visible in the top-left corner of the screen. However, the latest rumors indicate that only one Face ID component...
Read Full Article80 comments
ios 26 4 pastel

iOS 26.4: Top 10 New Features Coming to Your iPhone

Friday March 20, 2026 2:44 pm PDT by
iOS 26.4 isn't the major update with new Siri features that we hoped for, but there are some useful quality of life improvements, and a little bit of fun with an AI playlist generator and new emoji characters. Playlist Playground - Apple Music has a Playlist Playground option that lets you generate playlists from text-based descriptions. You can include moods, feelings, activities, or...
Read Full Article50 comments

Top Rated Comments

N
now i see it
126 months ago
I discovered a bug in Apple's Mac update schedule. The Mac never seems to update. Can I collect $200,000?
Score: 27 Votes (Like | Disagree)
T
TheHorrorNerd
126 months ago
I discovered a bug in Apple's Mac update schedule. The Mac never seems to update. Can I collect $200,000?
And that's why its invite only...
Score: 18 Votes (Like | Disagree)
4
44267547
126 months ago
$200,000 is a great incentive to help detect these issues. Hopefully it's successful.
Score: 16 Votes (Like | Disagree)
Twimfy Avatar
Twimfy
126 months ago
The incredibly buggy new OS releases shows that Apple is no longer capable of doing it in-house - going the OUTSOURCING route.
Not quite, doesn't matter how many gifted employees you have in-house you'll never catch everything. A familiar work environment breeds a familiar way of thinking, sometimes you need someone to take a look at code from a completely different perspective and it's amazing what can be spotted hiding in plain sight. Happens in all walks of life.

Increasing the number of eyes on their systems with a financial incentive is a really efficient and effective way of catching security flaws.
Score: 14 Votes (Like | Disagree)
T
TheHorrorNerd
126 months ago
Can no longer do it in-house - going the OUTSOURCING route.
Oh come on... Most other companies "outsource" it... Its smart business.
Score: 14 Votes (Like | Disagree)
E
EricTheHalfBee
126 months ago
Great idea. iOS will always be more secure than Android, and this will only further that gap.
Score: 10 Votes (Like | Disagree)
Read All Comments
Related Apple News: South Africa | World News | Iphone | Opinion | Buyers Guide