Newsbytes
  • India
  • Business
  • World
  • Politics
  • Sports
  • Science
  • Entertainment
  • Auto
  • Lifestyle
  • Inspirational
  • Career
  • Bengaluru
  • Delhi
  • Mumbai
  • Videos
  • Find Cricket Statistics
Hindi
More
Newsbytes
Hindi
Newsbytes
User Placeholder

Hi,

Logout


India
Business
World
Politics
Sports
Science
Entertainment
Auto
Lifestyle
Inspirational
Career
Bengaluru
Delhi
Mumbai
Videos
Find Cricket Statistics

More Links
  • Videos

Download Android App

Follow us on
  • Facebook
  • Twitter
  • Linkedin
  • Youtube
 
Home / News / Science News / Hacker flags Safari vulnerabilities, wins Rs. 57 lakh from Apple
  • Science

    Hacker flags Safari vulnerabilities, wins Rs. 57 lakh from Apple

    Shubham Sharma
    Written by
    Shubham Sharma
    Twitter
    Last updated on Apr 05, 2020, 08:51 pm
    Hacker flags Safari vulnerabilities, wins Rs. 57 lakh from Apple
  • Apple encourages security researchers to flag vulnerabilities in its products and is also willing to pay some really good money for that.

    Case in point: the ethical hacker who has just won Rs. 57 lakh ($75,000) from the Cupertino giant for flagging as many as seven critical flaws in its Safari browser.

    Here's all you need to know about it.

  • In this article
    Bounty to former AWS security engineer Ryan Pickren Three issues allowed remote hijacks Bugs were reported in mid-December 'Users should not think their cameras are fully secured'
  • Award

    Bounty to former AWS security engineer Ryan Pickren

  • The ginormous "bug bounty" was awarded to former Amazon Web Services (AWS) security engineer Ryan Pickren.

    He had looked at Apple's Safari ecosystem and discovered at least seven critical zero-day vulnerabilities posing a threat to the security of users.

    However, instead of using them for attacks, he reported the bugs to the company, ensuring that they were fixed before anyone could exploit them.

  • Details

    Three issues allowed remote hijacks

    Three issues allowed remote hijacks
  • Of the seven issues uncovered, three opened a way to hijack the camera and microphone of iPhones, iPads, and Macs.

    The exact exploit has not been detailed, but the issues largely revolved around tricking the user into opening a malicious website, which, when opened, could access the camera if it had previously trusted video-conferencing platforms like Zoom and Skype.

  • Report

    Bugs were reported in mid-December

  • Pickren says he had informed Apple about the vulnerabilities back in mid-December and the company was quick to issue the required fixes and release the reward.

    The glitches were not disclosed until earlier this week, the researcher added, noting this is the first reward he has won under the bug bounty program that Apple recently expanded to accept entries for macOS issues.

  • Response

    'Users should not think their cameras are fully secured'

    'Users should not think their cameras are fully secured'
  • Speaking to Forbes, Pickren stated, "A bug like this shows why users should never feel totally confident that their camera is secure, regardless of operating system or manufacturer."

    He added, "I really enjoyed working with the Apple product security team when reporting these issues. The new bounty program is absolutely going to help secure products and protect customers."

  • Security
  • Forbes
  • Skype
  • Apple
  • iPhones
  •  
Latest News
  • Coronavirus: India's tally reaches 11.13 million with 12K+ new cases
    Coronavirus: India's tally reaches 11.13 million with 12K+ new cases
    India
  • Ahead of launch, Meizu 18 series' camera system teased
    Ahead of launch, Meizu 18 series' camera system teased
    Science
  • Employee sues Amazon for racial, gender discrimination in corporate hiring
    Employee sues Amazon for racial, gender discrimination in corporate hiring
    Business
  • Realme C21, with 5,000mAh battery, to debut on March 5
    Realme C21, with 5,000mAh battery, to debut on March 5
    Science
  • Alec Baldwin, wife Hilaria welcome their sixth child
    Alec Baldwin, wife Hilaria welcome their sixth child
    Entertainment
Related Timelines
  • #BugAlert: Critical desktop hijack vulnerability detected in Slack; now fixed
    #BugAlert: Critical desktop hijack vulnerability detected in Slack; now fixed
    Science
  • #BugAlert: Security flaw flagged in Safari, but Apple delayed patch
    #BugAlert: Security flaw flagged in Safari, but Apple delayed patch
    Science
  • Indian techie flags vulnerability in Apple's sign-in system, wins $100,000
    Indian techie flags vulnerability in Apple's sign-in system, wins $100,000
    Science
  • Hackers are exploiting an 'unpatched' vulnerability in Windows 10
    Hackers are exploiting an 'unpatched' vulnerability in Windows 10
    Science
Trending Topics
Samsung OnePlus Mobiles Android TV Smart TV Latest Gadget Launch MediaTek Dimensity 1000+ COVAXIN Latest Tech News Upcoming Mobile Phones
Next News Article
Share
Cancel

Want to share it with your friends too?

Facebook Whatsapp Twitter Linkedin
Copied

Love Science news?

Subscribe to stay updated.

Science Thumbnail
India News Business News World News Politics News Sports News Science News Entertainment News Auto News Lifestyle News Inspirational News
Career News Bengaluru News Delhi News Mumbai News Bharti Airtel Mukesh Ambani Twitter Indian Premier League Samsung Virat Kohli
Rohit Sharma Cricket News YouTube Hollywood News WhatsApp Bollywood News Real Madrid ISRO Yoga Honda
Batman Football News BMW Novak Djokovic Vaccine Reliance Jio OPPO Food News, Healthy Recipes Royal Challengers Bangalore Prince Philip
Toyota Fashion Tips Mercedes La Liga Isha Ambani India Vs England Cricket OnePlus Mobiles Android TV Smart TV Bobby Deol
Marvel Comics Avengers Neha Kakkar Premier League
About Us Privacy Policy Terms & Conditions Contact Us News Reviews News Archive Topics Archive Find Cricket Statistics
Follow us on
Facebook Twitter Linkedin Youtube
All rights reserved © NewsBytes 2021