Get the latest tech news
Apple refused to pay bounty to Kaspersky for uncovering vulnerability
Kaspersky reported one of the iOS vulnerabilities found in Operation Triangulation. However, in a bizarre update, Apple reportedly refused to pay the security bounty.
Kaspersky, the renowned Russian cybersecurity firm, made headlines at this time last year after uncovering an attack chain using four iOS zero-day vulnerabilities to create a zero-click exploit. It is common for big tech companies like Apple to use security bounty programs to encourage researchers and hackers to find and report vulnerabilities to them rather than selling them to malicious actors, often nation-states, who might exploit them. Users would have no idea their device was infected, as the malware would transmit sensitive data, including microphone recordings, photos, and geolocation, to servers controlled by the attacker.
Or read this on Hacker News
/cdn.vox-cdn.com/uploads/chorus_asset/file/25484054/STK469_WWDC_2_2024_E.jpg)