“Additionally, Exodus also offers payment in the form of Bitcoin for Zero-Day research”.
Advertisement
Exodus Intelligence is now offering hackers up to $500,000 for an iOS zero-day vulnerability, far more than Apple is offering through its new Security Bounty Program.
Ivan Krstic, head of Apple Security Engineering and Architecture, announced last week during the Black Hat cybersecurity conference in Las Vegas, Nevada that company is paying anywhere from $25,000 to $200,000 to researchers who can find and report previously unknown vulnerabilities, depending on the type of weaknesses they find. Apple is also offering successful researchers the option to donate bug bounty payments to charity which, at the company’s discretion, the company will match donations. Exodus Intelligence is also searching for vulnerabilities and hacks for Google Chrome, Microsoft Edge, Firefox, Adobe Reader and even Adobe Flash which pays up to $60,000 in maximum rewards. Other tech giants including Google and Microsoft have offered them for years as a way to encourage hackers to turn over bugs rather than sell details of them to bad actors.
Zero-day submissions will be accepted through the company’s website, with a response promised within 10 business days.
Exodus president Logan Brown said: “Exodus is excited to be engaging the global research community in our mission to provide the highest quality of vulnerability intelligence in the industry”.
Such a high reward for iOS leak is not new, the company Zerodium has offered a longer amount of $ 500,000, in this case for a remote jailbreak of iOS.
The idea is that cybercriminals will pay anyone who is willing to tell them about the vulnerability and prevent the operating system or software’s vendors from patching the flaw, because it’s much better for the criminals if they have a consistent backdoor they can use to hack into a government or enterprise network.
Advertisement
Join the PC World newsletter!
