Apple offers hackers free iPhones to hunt down iOS security bugs

News
By published

Silicon valley giant unveils iOS Security Research Device Program

(Image credit: Apple)

Apple will now provide leading researchers with modified iPhone devices to help try and spot iOS vulnerabilities

The Apple Security Research Device Program, which begins effective immediately, is designed to improve the efficiency of white hat hackers, by offering facilities that speed the interrogation process.

The special devices offer unique security privileges, including loosened code execution and containment policies, which afford researchers shell access and the ability to run any tool of their choosing. In effect, the iPhones are pre-jailbroken, removing friction associated with analysis and handing researchers unfettered access to iOS.

Otherwise, the devices behave as any other iPhone would, in order to best replicate real life security scenarios.

“As part of Apple’s commitment to security, this program is designed to help improve security for all iOS users, bring more researchers to iPhone and improve efficiency for those who already work on iOS security,” the company explained in a blog post.

iOS security

To qualify for the new scheme, security researchers must be an existing member of the Apple Developer Program, have a proven track record of weeding out vulnerabilities in Apple products and reside in one of the 23 eligible nations.

According to the blog post, device availability will also be limited at first and therefore not all qualified applicants will receive a modified phone. These candidates will be funneled automatically into the second application round, set to take place in 2021.

Successful candidates will receive a Security Research Device (SRD) on a 12-month renewable basis, on a few conditions. Apple stipulates that the phones must not be used as personal devices, nor removed from the premises used to conduct research. Access to the modified device must also be limited to the approved individual.

Researchers that use an SRD to identify a vulnerability will be considered for financial reward via the existing Apple Security Bounty program, with a maximum payout of $1 million.

TOPICS
Joel Khalili
Joel Khalili
News and Features Editor

Joel Khalili is the News and Features Editor at TechRadar Pro, covering cybersecurity, data privacy, cloud, AI, blockchain, internet infrastructure, 5G, data storage and computing. He's responsible for curating our news content, as well as commissioning and producing features on the technologies that are transforming the way the world does business.

Latest in Security
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Oracle
Oracle denies data breach after hacker claims to hold six million records
Hacker silhouette working on a laptop with North Korean flag on the background
North Korea unveils new military unit targeting AI attacks
An image of network security icons for a network encircling a digital blue earth.
US government warns agencies to make sure their backups are safe from NAKIVO security issue
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
This top WordPress plugin could be hiding a worrying security flaw, so be on your guard
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
Veeam urges users to patch security issues which could allow backup hacks
Latest in News
Tesla Roadster 2
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
Samsung HW-Q990D soundbar with Halloween theme over the top
Samsung promises to repair soundbars bricked by its disastrous software update for free – but it'll probably involve shipping
Google Gemini AI
Gmail is adding a new Gemini AI tool to help smarten up your work emails
DJI Mavic 3 Pro
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
Android 16 logo on a phone
Here's how Android 16 will upgrade the screen unlocking process on your Pixel
Man sitting on sofa, drinking coffee, looking at phone in surprise
Thousands of coffee lovers warned to stop using their espresso machines immediately after reports of burns and lacerations
More about security
Oracle

Oracle denies data breach after hacker claims to hold six million records
IBM office logo

IBM to provide platform for flagship cyber skills programme for girls
Surface Laptop 7

Amazon warns customers about the Surface Laptop – and it’s not just bad news for Microsoft
See more latest
Most Popular
Surface Laptop 7
Amazon warns customers about the Surface Laptop – and it’s not just bad news for Microsoft
vector isometric illustration of a handheld gaming console
SteamOS is about to change handheld gaming PCs as HP finally considers ditching Windows 11
Oracle
Oracle denies data breach after hacker claims to hold six million records
Tesla Roadster 2
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
DJI Mavic 3 Pro
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
De'Longhi Linea Classic espresso machine on kitchen counter with hot and cold coffee drinks
I'm a qualified barista, and De'Longhi's latest espresso machine could be this year's best budget buy for coffee lovers
Man sitting on sofa, drinking coffee, looking at phone in surprise
Thousands of coffee lovers warned to stop using their espresso machines immediately after reports of burns and lacerations
Samsung HW-Q990D soundbar with Halloween theme over the top
Samsung promises to repair soundbars bricked by its disastrous software update for free – but it'll probably involve shipping
A Minecraft sheep.
Minecraft developer rejects generative AI, 'it's important that it makes us feel happy to create as humans'
Nvidia AMD
Nvidia rumors suggest it's working on two affordable GPUs to spoil AMD's party