Security Architecture, Endpoint/Device Security, Endpoint/Device Security, Security Strategy, Plan, Budget, Vulnerability Management, Endpoint/Device Security, Endpoint/Device Security, Endpoint/Device Security

Cybersecurity firm offers $1M for iOS 9 jailbreak and vulnerabilities

A cybersecurity company is offering $1 million to any individual or team who can create an “exclusive, browser-based, and untethered jailbreak for the latest Apple iOS 9 operating system and devices,” according to a company blog post.

Zerodium wrote that it has up to $3 million to reward for iOS exploits and/or jailbreaks. Eligible submissions must have a “full chain of unknown, unpublished and unreported vulnerabilities/exploits” that are combined to bypass “all iOS 9 exploit mitigations.” That includes ASLR, sandboxes, rootless, code signing and bootchain, the company said.

The initial attack vector must also be either a web page targeting a mobile browser in its default configuration, a text message and/or multimedia file delivered through SMS or MMS, or a web page targeting any application reachable through the browser.

All submissions must be made through encrypted emails.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.