Apple Launches New Security Research Website
Apple today introduced Apple Security Research, a new website that is dedicated to improving the methods available to security researchers for reporting issues to Apple. The site offers up tools for sending Apple security reports, getting real-time status updates, and communicating with Apple engineers.
In addition to housing information on the Apple Security Bounty program, the website is a blog that will allow the Apple engineering teams to share the latest advances in Apple security. The first post delves into XNU memory safety.
Apple today also shared progress that it has made with the Apple Security Bounty program. In the last two and a half years, Apple has awarded close to $20 million in payments to researchers. Average payouts are around $40,000 in the Product category, and Apple has paid 20 separate rewards over $100,000 for high-impact issues.
Apple says that it is now responding to issues more quickly than before, and has made it easier to report issues and communicate with Apple's teams through the launch of the new website. All bug report status changes are reflected in a new tracker available on the website, which also makes it easier for Apple to collect more information on bugs.
Transparency has been improved as well, with the site offering detailed Apple Security Bounty information and evaluation criteria so researchers have a better idea of what will earn a reward.
Today through November 30, 2022, Apple is accepting applications for the 2023 Apple Security Research Device Program, which provides qualified individuals with an iPhone that is designed specifically to make finding bugs easier.
Popular Stories
Apple has announced it will be holding a special event on Tuesday, May 7 at 7 a.m. Pacific Time (10 a.m. Eastern Time), with a live stream to be available on Apple.com and on YouTube as usual. The event invitation has a tagline of "Let Loose" and shows an artistic render of an Apple Pencil, suggesting that iPads will be a focus of the event. Subscribe to the MacRumors YouTube channel for more ...
Apple today released several open source large language models (LLMs) that are designed to run on-device rather than through cloud servers. Called OpenELM (Open-source Efficient Language Models), the LLMs are available on the Hugging Face Hub, a community for sharing AI code. As outlined in a white paper [PDF], there are eight total OpenELM models, four of which were pre-trained using the...
Apple has dropped the number of Vision Pro units that it plans to ship in 2024, going from an expected 700 to 800k units to just 400k to 450k units, according to Apple analyst Ming-Chi Kuo. Orders have been scaled back before the Vision Pro has launched in markets outside of the United States, which Kuo says is a sign that demand in the U.S. has "fallen sharply beyond expectations." As a...
Apple is set to unveil iOS 18 during its WWDC keynote on June 10, so the software update is a little over six weeks away from being announced. Below, we recap rumored features and changes planned for the iPhone with iOS 18. iOS 18 will reportedly be the "biggest" update in the iPhone's history, with new ChatGPT-inspired generative AI features, a more customizable Home Screen, and much more....
Apple is finally planning a Calculator app for the iPad, over 14 years after launching the device, according to a source familiar with the matter. iPadOS 18 will include a built-in Calculator app for all iPad models that are compatible with the software update, which is expected to be unveiled during the opening keynote of Apple's annual developers conference WWDC on June 10. AppleInsider...
Top Rated Comments
They're gonna have to open up eventually so this new bounty program and the SRD is gonna be used to close as many vulnerabilities as possible before that time comes.