Zero-Day iOS Exploit Sold for $500,000

Zero-Day iOS Exploit Sold for $500,000

Posted by · 27519 views · Translate
The New York Times is reporting that a zero-day exploit in Apple's iOS operating system sold for $500,000.

The news comes via an article about two Italian hackers, Luigi Auriemma, 32, and Donato Ferrante, 28, who sell technical details of such vulnerabilities to countries that want to break into the computer systems of foreign adversaries.

The two will not reveal the clients of their company, ReVuln, but big buyers of services like theirs include the National Security Agency — which seeks the flaws for America’s growing arsenal of cyberweapons — and American adversaries like the Revolutionary Guards of Iran. All over the world, from South Africa to South Korea, business is booming in what hackers call “zero days,” the coding flaws in software like Microsoft Windows that can give a buyer unfettered access to a computer and any business, agency or individual dependent on one.

Last month, Microsoft reportedly increased the amount it was willing to pay for zero-day flaws to $150,000. However, companies like Microsoft are being outbid by countries who want to achieve the success of worms like Stuxnet.

“Governments are starting to say, ‘In order to best protect my country, I need to find vulnerabilities in other countries,’ ” said Howard Schmidt, a former White House cybersecurity coordinator. “The problem is that we all fundamentally become less secure.”

The NYT says that Apple does not have a program to pay hackers for discovering vulnerabilities in its software; however, exploits for iOS are some of the most coveted. Two sources told the paper that an iOS zero-day exploit sold for $500,000.

Read More [via Reddit]


Zero-Day iOS Exploit Sold for $500,000
henry06 - July 18, 2013 at 8:20am
Wait, wait.... This isn't some kind of exploit that can be used for jailbreaking is it? If it is.... Then damn.
Andreas - July 15, 2013 at 11:09pm
Can someone summarize the article please, I don't understand. Thanks!
rexology - July 16, 2013 at 1:06am
Basically, big corporations are paying people to discover exploits and security flaws for a big price. That's what I got when I took a quick glimpse at the article.
xol - July 15, 2013 at 9:37pm
you really need to get back on your medz duder, on the real. Did you even understand what the article said?
Copperhead - July 15, 2013 at 9:44pm
Wow bro, seriously?? You really need professional help ASAP..!! Wow, just wow. Please go to a hospital right this minute and tell them you need mental health immediately and that you will check yourself in that very moment. Make sure they prescribe some really strong mess for you.
4 More Comments
Recent