Exploit vendor Zerodium has tripled its põrnikas bounty for an Apple's iOS 10 zero-day exploit, offering a maximum payout of $US1.5 Million.
Yes, $1,500,000.00 Reward.
That's to a greater extent than than 7 times what Apple is offering (up to $200,000) for iOS zero-days via its private, invite-only põrnikas bounty program.
Zerodium, a startup past times the infamous French-based fellowship Vupen that buys in addition to sells zero-day exploits to authorities agencies merely about the world, previously offered US$500,000 for remote iOS ix jailbreaks, which was temporarily increased to $1 Million for a contender assist past times the fellowship concluding year.
The fellowship paid out $1 million contender vantage for the starting fourth dimension 3 iOS 9 zero-days inwards Nov to an unnamed hacker group, in addition to thus lowered the cost ane time again to $500,000.
With the recent loose of iOS 10, Zerodium has agreed to pay $1.5 Million to anyone who tin describe off a remote jailbreak of the Apple's latest mobile operating system, allowing a amount third-party command over the device.
The fellowship has equally good doubled its põrnikas bounty for Android 7.x (Nougat) remote jailbreaks to $200,000 equally good equally boosted rewards for exploits inwards other software, including Adobe Flash, Microsoft Internet Explorer in addition to Edge, Windows Reader, Microsoft Word in addition to Excel, Safari, in addition to OpenSSL or PHP.
To claim the prize money, Zerodium is quest for a previously unknown safety vulnerabilities that must let an assaulter to compromise a non-jailbroken iOS device remotely.
Zerodium CEO Chaouki Bekrar notes on Twitter that the fellowship is prepared to purchase multiple iOS zero-day hacks at that price, saying "We tin afford to purchase multiple iOS exploit chains for $1.5M each."
Hackers volition larn the payout inside a calendar week of submitting the zero-day vulnerabilities along alongside a valid working proof-of-concept.
