Apple to Give Security Researchers 'Special' iPhones for Bug Testing, macOS Bug Bounty Program Coming

by

Apple is planning to give security researchers access to special iPhones that will make it easier for them to find security vulnerabilities and weaknesses, reports Forbes, citing sources with knowledge of Apple's plans.

Apple is going to announce the new program at the Black Hat security conference in Las Vegas, which kicked off earlier this week and is continuing until Thursday.

iphonexrcolors1
The "special" iPhones will be similar to "dev devices," aka iPhones that are not as locked down and that will better allow security researchers to locate bugs.

What makes these iPhones special? One source with knowledge of the Apple announcement said they would essentially be "dev devices." Think of them as iPhones that allow the user to do a lot more than they could on a traditionally locked-down iPhone. For instance, it should be possible to probe pieces of the Apple operating system that aren't easily accessible on a commercial iPhone. In particular, the special devices could allow hackers to stop the processor and inspect memory for vulnerabilities. This would allow them to see what happens at the code level when they attempt an attack on iOS code.

The iPhones won't be identical to the developer iPhones that are provided to Apple's internal staff, as they won't be as open. They are described as "lite" versions of the developer devices by Forbes, with security researchers unlikely to be able to decrypt the iPhone's firmware.

‌iPhone‌ prototypes created for Apple's internal staff are popular with security researchers and hackers and can fetch quite a lot of money, as noted in a report earlier this year from Motherboard. Described as "pre-jailbroken devices," the iPhones are valuable because they can be used to find vulnerabilities both by those who have good intentions and those who have bad intentions.

Releasing a similar device to security researchers who participate in the bug bounty program will perhaps allow Apple to better locate serious bugs, leading to faster fixes.

Apple is also planning to announce a new macOS bounty program, which will provide rewards to people who find and report security vulnerabilities in macOS.

Apple's announcements could perhaps come on Thursday, which is when Ivan Krstić, Apple's head of security engineering, is set to offer a "Behind the Scenes" look at iOS and macOS.

Top Rated Comments

SRLMJ23 Avatar
SRLMJ23
46 months ago
About damn time Apple offered a bug bounty program for macOS!

:apple:
Score: 13 Votes (Like | Disagree)
Quu Avatar
Quu
46 months ago
This is really great news. They are serious about our security and it shows.
Score: 6 Votes (Like | Disagree)
szw-mapple fan Avatar
szw-mapple fan
46 months ago
I am now a researcher. Where is my phone? lol
If you're the kind of researcher Apple would send a phone to, the cost of an iPhone would be peanuts to you :p
Score: 3 Votes (Like | Disagree)
jzuena Avatar
jzuena
46 months ago
I was planning on going to Ivan Krstic's "Behind The Scenes of iOS and Mac Security" Thursday at 12:10 anyway. We'll see if they make the announcement then.
Score: 2 Votes (Like | Disagree)
MrTemple Avatar
MrTemple
46 months ago
Producing vulnerable phones? Will they ever stop copying Android?
Score: 2 Votes (Like | Disagree)
Shirasaki Avatar
Shirasaki
46 months ago
Producing vulnerable phones? Will they ever stop copying Android?
I am amazed that even in 2019, this “android copy iOS” “iOS copy android” narrative is still around. Are we still in 2012?
About damn time Apple offered a bug bounty program for macOS!

:apple:
Yeah, especially macOS is a such “unpatched” operating system, security wise.
So they’re basically giving out jail broken iPhones? Wonder how much those will end up going for on the black market afterwards...
Nope. This is less locked down but not “jailbroken iPhone”. I guess these iPhones are registered and can download special iOS version OTA or something.
Internal testing iPhone, however, will still be quite popular in black market.
Score: 2 Votes (Like | Disagree)
Read All Comments

Popular Stories

dewey airtag

Report Highlights Danger of Using AirTags for Tracking Dogs

Monday January 30, 2023 1:45 pm PST by
AirTags may be a convenient way for tracking dogs that might get off leash or otherwise lost, but there are dangers associated with the practice, as outlined by a report from The Wall Street Journal. At 1.26 inches in diameter, AirTags are able to fit easily on a dog's collar, but that size also makes the tracking devices small enough to swallow, at least for a medium to large-sized dog, and ...
Read Full Article85 comments
Multi Display CarPlay 1

Apple Launching All-New CarPlay Experience Later This Year With These 5 Features

Sunday January 29, 2023 10:15 am PST by
In June 2022, Apple previewed the next generation of CarPlay, promising deeper integration with vehicle functions like A/C and FM radio, support for multiple displays across the dashboard, personalization options, and more. Apple says the first vehicles with support for the next-generation CarPlay experience will be announced in late 2023, with committed automakers including Acura, Audi,...
Read Full Article
General iOS 16 Feature Yellow

Five New iOS Features Coming to Your iPhone Later This Year

Tuesday January 31, 2023 11:58 am PST by
Apple has previously announced several upcoming iOS features that are expected to be added to the iPhone this year. Some of the features could be introduced with iOS 16.4, which should enter beta testing soon, while others will arrive later in the year. Below, we have recapped five new iOS features that are expected to launch in 2023, such as an Apple Pay Later financing option for purchases ...
Read Full Article44 comments
maxresdefault

Kuo: Apple to Release Foldable iPad With Carbon Fiber Kickstand in 2024

Monday January 30, 2023 12:55 am PST by
Apple will launch a foldable iPad with a carbon fiber kickstand sometime next year, according to analyst Ming-Chi Kuo. Subscribe to the MacRumors YouTube channel for more videos. In a series of tweets, Kuo said he expects an "all-new design foldable iPad" to be the next big product launch in the iPad lineup, with no other major iPad releases in the next nine to 12 months. The analyst said he...
Read Full Article216 comments
Apple Silicon Teal Feature

The Next Big Apple Silicon Device May Not Be a Mac or iPad

Wednesday February 1, 2023 3:57 am PST by
Apple's next device with an Apple silicon chip may not be a Mac or an iPad, but rather an advanced external display, according to recent reports. The display, which is rumored to arrive this year, is expected to sit somewhere between the $1,599 Studio Display and the $4,999 Pro Display XDR – but more exact information about the device's positioning and price point is as yet unknown. While ...
Read Full Article
MKBHD HomePod 2 White Ring Stain

New HomePod Can Still Stain Some Wooden Surfaces

Tuesday January 31, 2023 8:29 am PST by
When the original HomePod launched in 2018, it was discovered that the speaker can leave white rings on some wooden surfaces. Now, well-known YouTuber Marques Brownlee has confirmed that the issue persists to a lesser extent with the new HomePod. In a side-by-side test, he showed that the white second-generation HomePod left a white ring on the wooden surface that he placed the speaker on,...
Read Full Article75 comments
tim cook data privacy day

Apple Violated U.S. Labor Laws With Anti-Leak Email

Monday January 30, 2023 3:43 pm PST by
Apple violated United States labor laws when it sent out an email warning employees about leaking confidential information about the company, the National Labor Relations Board (NLRB) said today in a ruling shared by Bloomberg. Rules that Apple has established around leaks "tend to interfere with, restrain or coerce employees" from the exercise of their rights under the National Labor...
Read Full Article178 comments