A major security breach can happen to any business at any time. This is why hackers with white hats spend their days pointing and pushing networks and looking for any vulnerabilities that could jeopardize customers̵7; private data. But it’s weird to hear about a white hat group reporting 55 vulnerabilities to a company, especially when the company in question is Apple.
As reported by Ars Technica, a group of hackers led by 20-year-old Sam Curry discovered 55 vulnerabilities in Apple’s infrastructure. Of those 55 bugs, 11 were “critical”, meaning Curry and his team could use them to collect private information, emails and iCloud data.
Apple has addressed nearly half of the vulnerabilities reported by Curry and undertakes to pay at least $ 288,500 for the discovery of these bugs. Curry still predicts that Apple could pay something up to $ 500,000 when it works through all the bugs. Frankly, it’s a small price to pay to avoid a massive data breach.
Other researchers working with Curry include Brett Buerhaus, Ben Sadeghipour, Samuel Erb and Tanner Barnes. The group hacked Apple for three months on the Apple bug bounty program and wrote a comprehensive report describing how vulnerabilities were discovered. It’s a good read, even if it’s quite long!
Source: Sam Curry via Ars Technica