"Security Researchers Awarded over $250,000 for Reporting 55 Vulnerabilities in Apple's Bug Bounty Program"
As part of Apple's bug bounty program, a team of researchers analyzed the company's online services and found a total of 55 vulnerabilities, 11 of which were flagged as critical. The team received a reward of $288,500 for their findings. According to the researchers, the exploitation of these vulnerabilities would have allowed attackers to take over customer and employee applications, launch a worm that can take over iCloud accounts, and more. Attackers could have abused one critical bug discovered in the Apple Distinguished Educator (ADE) program's website to access the administrator console and execute arbitrary code. This article continues to discuss the security flaws found in Apple's online services and the malicious activities that attackers could have performed through the exploitation of these vulnerabilities.