12.1 Major Exploit

Discussion in 'iOS 12' started by macduke, Nov 8, 2018.

  1. macduke macrumors G3

    macduke

    Joined:
    Jun 27, 2007
    Location:
    Central U.S.
    #1
    I have discovered a major exploit which allows bypassing Touch ID from the lock screen. How do you guys recommend that I go about disclosing this so that I can get the bounty that Apple has on bugs of this magnitude?

    Do I need to have it well documented? Does it need to be reproducible on another device? I don't want to mess this up, but I also don't want to be too late in disclosing this. As you can see I am a long time member of these forums going back to the original iPhone launch in 2007 and can assure you that I am 100% dead serious. This is actually pretty nuts. I have no idea how the bug bounty program works and found little information online about how to file and what specifically I need to do to cover all of my bases. I have already recorded a video of the exploit in action and considered submitting it to the editors here but if I can get paid then I do not want to screw this up.

    Thank you so much. I don't know if I'm going to be able to sleep tonight.
     
  2. C DM macrumors Sandy Bridge

    Joined:
    Oct 17, 2011
    #2
    https://support.apple.com/en-us/HT201220

    https://slate.com/technology/2016/08/why-apples-bug-bounty-program-is-unlike-any-other.html
     
  3. Morgenland, Nov 8, 2018
    Last edited: Nov 8, 2018

    Morgenland macrumors 6502

    Morgenland

    Joined:
    May 28, 2009
    Location:
    Europe
    #3

Share This Page