Apple has recently unveiled an updated version of its Apple Security Bounty program, offering some of the most generous rewards in the cybersecurity industry. This program incentivizes security researchers to responsibly disclose vulnerabilities found in Apple's operating systems, devices, and services. With the revamped program, researchers can now earn significantly higher rewards for their bug findings.
A preview of how Apple is increasing rewards for five key attack vectors. | Image credit – Apple
Apple Raises the Bar with Unprecedented Bug Bounty Rewards
Apple is taking its Security Bounty program to new heights by offering record-breaking rewards for discovering and reporting security vulnerabilities. The enhanced program now includes the following maximum rewards for different types of exploits:- Exploit chains requiring one-click user interaction can now earn up to $1 million (previously $250,000).
- Attacks requiring physical proximity to a device can now earn up to $1 million, up from $250,000.
- Attacks requiring physical access to a locked device can now fetch up to $500,000, double the previous limit.
- Researchers who chain WebContent code execution with a sandbox escape can earn up to $300,000.
A preview of how Apple is increasing rewards for five key attack vectors. | Image credit – Apple
According to Apple, the company acknowledges the evolving threat landscape and aims to stay ahead by rewarding advanced security research that can enhance user protection.
Apple Encourages Advanced iOS Research
Apple welcomes researchers to explore the security features of the iPhone 17 devices, showcasing Apple's latest security enhancements like Memory Integrity Enforcement. This initiative is open to experienced researchers from any platform, and applications are accepted until October 31, 2025.
More Rewards, More Research, Better User Protection
Apple's emphasis on rewarding security researchers not only encourages more in-depth research but also strengthens user protection against evolving cyber threats. The increased rewards highlight Apple's commitment to investing in security and staying ahead of potential vulnerabilities.
