Security News > 2020 > July > Apple Offers Hackable iPhones to Security Researchers
Apple this week kicked off another initiative meant to improve the security of iPhones, by offering hackable phones to security researchers.
Specifically designed for security researchers, these devices feature unique code execution and containment policies and are offered as part of the company's Security Research Device program, which was initially announced in December last year.
Security researchers looking to identify iOS vulnerabilities on SRD iPhones will enjoy shell access and the possibility to run the tools they want.
Apple encourages researchers to report security bugs even if they were not discovered with the use of an SRD. All vulnerabilities found on these iPhones are considered eligible for monetary rewards as part of the Apple Security Bounty program, which has been accessible to the public for a while.
While Apple claims to have launched the program to attract security researchers interested in identifying holes in its platform, some of the restrictions will keep proven bug hunters away from SRD. Google's Project Zero researchers won't be able to participate, as they tend to publish vulnerability details 90 days after disclosure, regardless of whether a patch has been released or not.
News URL
Related news
- Tired of airport security queues? SQL inject yourself into the cockpit, claim researchers (source)
- Researchers find SQL injection to bypass airport TSA security checks (source)
- Docker-OSX image used for security research hit by Apple DMCA takedown (source)
- Security Researcher Sued for Disproving Government Statements (source)
- Apple releases iOS 18, with security and privacy improvements (source)
- Apple's latest macOS release is breaking security software, network connections (source)