Google Researchers Say Hackers Exploited Two Zero-Day Vulnerabilities Patched in Apple's iOS 12.1.4 Update

Then Apple needs to make it worth their while. While there is an ethical component to not using the detected vulnerabilities, if Apple doesn't have enough staff to comb through bugs and are too cheap to hire more people, then they should more handsomely reward bug hunters. At the same time, I wonder whether this might have a reverse effect where an Apple employee might tactically insert a vulnerability. In this way, they could sell knowledge of the vulnerability to the highest bidder who then reports this to Apple via the official bounty program...

 

Or people could just not be greedy. That's a thing, too.

 

About as much as world peace is a thing, unfortunately.

 

Well with a pessimistic attitude like that...

 

If only that kind of thing was down to just attitude.

 

That is a weird line “it’s all they do “
Are you saying Apple DONT have a software QA team ? Then surely Apple QA team is severely lacking ....

I mean the very fact that they are now paying “hackers” to search for vulnerabilities , I would understand if it was that difficulty.

But for a FaceTime bug this simple to be missed? Perplexing ...

So many bug coming from Apple software in iOS and Mac OS.....
What happened to hair force one ?

 

It's only weird if you ignore the rest of the sentence which contains the context. Searching for zero day exploits is all they do. It's even in the team name.

No one is saying Apple doesn't have a software QA team. Their team covers the entire gambit of issues. Not just zero days.