Zerodium Ups iOS Bug Bounty to $1.5M

...

Looking to make some serious cash? Grab an iPhone and start hacking.

The somewhat controversial security start-up Zerodium, which buys and sells zero-day (aka unknown) software exploits, has increased its permanent bug bounty for iOS flaws to $1.5 million.

The firm made headlines last year when it offered $1 million for unknown iPhone and iPad flaws. Zerodium ended up cutting that $1 million bounty in half after paying for three qualifying submissions, but now the reward is back up and higher than ever.

If iOS hacking isn't your thing, the company also this week increased bounties for Android and Flash flaws. Zerodium is now paying double — or $200,000 — for Android bugs and $80,000 for Flash vulnerabilities (up from $50,000).

Zerodium founder Chaouki Bekrar told Ars Technica the new prices reflect today's tightened security landscape. "Prices are directly linked to the difficulty of making a full chain of exploits, and we know that iOS 10 and Android 7 are both much harder to exploit than their previous versions," he told Ars.

Apple launched a bug bounty program of its own just last month, offering hackers up to $200,000 to identify vulnerabilities in its products. Google has offered bug bounties for some time, but its prices, too, are only a fraction of Zerodium's million-dollar-plus payday.

As Ars notes, however, getting a bounty from Zerodium requires a lot more work, since the company is seeking so-called "weaponized" exploits, which give an attacker full control over a targeted device, not just rough proof-of-concept code. It's also worth mentioning that not everyone is a fan of Bekrar, who has a history of selling exploits to the highest bidder, rather than disclosing issues to the manufacturer.

Categories
APPLICATIONS
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    LinkedIn Begins New Chapter Under Microsoft's Wing

    Integration of the companies' products is under way: "Working across private and public sectors, we can create more opportunity for everyone to participate and share in economic growth," Nadella said.For example, bringing LinkedIn profiles into the overall intelligence of account management could drive "much more intelligent selling," she told the E-Commerce Times.
  • 5300c769af79e

    DEAL: Brand New Nexus 5 at Woot Today for $149.99

    com for a ridiculously low price of $149.These are brand new Nexus 5s.
  • 5300c769af79e

    How to Start Purging Your Digital Life

    If you enjoy a good purge and have a messy digital life, here are some suggestions and tips for getting rid of some old data.I like to create folders for every year and stick old files I might need one day in there.
  • 5300c769af79e

    Oracle's Earnings Call

    Co-CEO Safra Catz said during the earnings call that the quarter's US$816 million in combined revenue from cloud, SaaS and PaaS was up 82 percent from the prior year and up 80 percent from her guidance to analysts.CTO Larry Ellison said that the growth was primarily from new business and not from converting a large portion of Oracle's customer base to cloud solutions.