As Apple is about to launch its private AI cloud service, "Private Cloud Compute," the tech giant has decided to offer security researchers rewards of up to $1 million to discover vulnerabilities that could compromise the security of its cloud services. Apple announced on its security blog that researchers who report vulnerabilities allowing remote execution of malicious code could be eligible for the maximum reward of $1 million.
Image source note: The image was generated by AI, authorized by the service provider Midjourney
Additionally, Apple offers rewards of up to $250,000 for vulnerabilities privately reported that could extract sensitive user information or hints submitted to the private cloud. They specifically mention considering any situation that has a significant impact on security, such as vulnerabilities that can access sensitive user information from privileged network positions, with rewards up to $150,000.
This initiative is a continuation of Apple's Bug Bounty program, aimed at encouraging hackers and security researchers to privately report defects and vulnerabilities that could affect customer devices or accounts. In recent years, Apple has also introduced a specialized iPhone for researchers to help them conduct security tests and enhance device security, as these devices are often targeted by spyware manufacturers.
Apple also detailed the security of its private cloud computing service in the blog, sharing some source code and documentation. The company views its private cloud computing service as an online extension of AI models on customer devices, designed to handle more complex AI tasks while ensuring user privacy and enhancing processing capabilities.
In an era where cybersecurity is increasingly important, Apple's move will undoubtedly further enhance the security of its services and provide a platform for security researchers to showcase their skills.
Key Points:
1. 💰 Apple will offer security researchers rewards of up to $1 million to discover security vulnerabilities in its private AI cloud service.
2. 🔒 Apple's Bug Bounty program aims to encourage private reporting of security issues to enhance the security of customer devices and accounts.
3. 📱 Apple has introduced a researcher-specific iPhone for more effective security testing and vulnerability discovery.