Google Researchers Say Hackers Exploited Two Zero-Day Vulnerabilities Patched in Apple's iOS 12.1.4 Update

Discussion in 'iOS Blog Discussion' started by MacRumors, Feb 8, 2019.

  1. nitramwin macrumors member

    Joined:
    Mar 18, 2008
    #51
    Then Apple needs to make it worth their while. While there is an ethical component to not using the detected vulnerabilities, if Apple doesn't have enough staff to comb through bugs and are too cheap to hire more people, then they should more handsomely reward bug hunters. At the same time, I wonder whether this might have a reverse effect where an Apple employee might tactically insert a vulnerability. In this way, they could sell knowledge of the vulnerability to the highest bidder who then reports this to Apple via the official bounty program...
     
  2. H3LL5P4WN macrumors 68000

    H3LL5P4WN

    Joined:
    Jun 19, 2010
    Location:
    Pittsburgh PA
    #52
    Or people could just not be greedy. That's a thing, too.
     
  3. C DM macrumors Sandy Bridge

    Joined:
    Oct 17, 2011
    #53
    About as much as world peace is a thing, unfortunately.
     
  4. H3LL5P4WN macrumors 68000

    H3LL5P4WN

    Joined:
    Jun 19, 2010
    Location:
    Pittsburgh PA
    #54
    Well with a pessimistic attitude like that...
     
  5. C DM macrumors Sandy Bridge

    Joined:
    Oct 17, 2011
    #55
    If only that kind of thing was down to just attitude.
     
  6. zulkiflim macrumors regular

    zulkiflim

    Joined:
    Jan 6, 2008
    Location:
    Singapore
    #56

    That is a weird line “it’s all they do “
    Are you saying Apple DONT have a software QA team ? Then surely Apple QA team is severely lacking ....

    I mean the very fact that they are now paying “hackers” to search for vulnerabilities , I would understand if it was that difficulty.

    But for a FaceTime bug this simple to be missed? Perplexing ...

    So many bug coming from Apple software in iOS and Mac OS.....
    What happened to hair force one ?
     
  7. 69Mustang macrumors 603

    69Mustang

    Joined:
    Jan 7, 2014
    Location:
    In between a rock and a hard place
    #57
    It's only weird if you ignore the rest of the sentence which contains the context. Searching for zero day exploits is all they do. It's even in the team name.;)
    No one is saying Apple doesn't have a software QA team. Their team covers the entire gambit of issues. Not just zero days.
     

Share This Page