Apple Inc., the world’s most valuable company in terms of market capitalization, is offering a security bounty of up to $1 million to encourage ethical hackers and security researchers to find bugs and holes in its secure cloud platform, the Private Cloud Compute (PCC) system.
The PCC handles its complex artificial intelligence (AI) processes, including its latest Apple Intelligence features.
In connection with this challenge, the privacy—and security-conscious tech company must make certain virtual research environments available and open-source certain AI system codes.
Through a blog post, Apple mentioned that they are building public trust in the system by allowing security and privacy researchers to inspect and verify PCC’s end-to-end security and privacy promises and giving early access to the PCC Virtual Research Environment (VRE).
In the following guidelines, they announced that they are making the resources publicly available to invite all security and privacy researchers or anyone interested in technical matters.
Here’s the updated Apple Security Bounty: Private Cloud Compute
- Remote attack on request data
- Up to $1,000,000 – Arbitrary code execution with arbitrary entitlements
- Up to $250,000 – Access to a user’s request data or sensitive information about the user’s requests outside the trust boundary.
- Attack on request data from a privileged network position
- Up to $150,000 – Access to a user’s request data or other sensitive information about the user outside the trust boundary
- Up to $100,000 – Ability to execute unattested code
- Up to $50,000 – Accidental or unexpected data disclosure due to deployment or configuration issue
If you have the skills to accept the challenge of cracking Apple’s PCC, try it out and become a Philippine peso multi-millionaire.