1. Forums /
  2. Tech Boards /
  3. Mobile /
  4. Apple & iOS /
  5. ZERODIUM's iOS9 Bug Bounty program and why it's such a dick move
Post: ZERODIUM's iOS9 Bug Bounty program and why it's such a dick move
09-21-2015, 02:30 PM #1
JB's Avatar
JB
[i]Remember, no Russian.[/i]
(adsbygoogle = window.adsbygoogle || []).push({}); I was browsing Twitter before and came across this link: You must login or register to view this content.
The company, ZERODIUM, buys 0days (undisclosed/private exploit vectors in applications/systems) and sells them to developers in order to haver them patched. They recently unveiled "the world's biggest bug bounty program", a program to find bugs in Apple's iOS 9 that allows for code execution/code signing in order to install applications such as Cydia (basically, find a vuln that will pave the way to a jailbreak), with top prize being a cool $1M.

Now, a lot of you will think "Yeah, so what? That's a cool prize and well deserved by anyone who finds such a bug."

You're wrong and I'll explain why as simply as I can. The move this company is doing will tear the jailbreak community apart if the big players sell their research. As of right now, there are only really three grounds actively working on providing jailbreaks to the public - TaiG, Pangu and evad3rs. If all three of those teams sell out, there will be no public iOS 9 jailbreak unless some other group steps up. ZERODIUM won't release any jailbreak to the public, regardless of how many people do sell out. They will sell the vulnerabilities back to Apple, and will likely earn much more than they will be paying out in return.

Also, look at it like this. They are forcing jailbreak teams to choose between money, and keeping the jailbreak community happy. If the teams do sell out and no other group stands up, there literally will not be a jailbreak. Ever. They are forcing these groups to choose between taking the money, and keeping the community happy. And that is just fucking wrong in my book.

I invite everyone who disagrees with me to look at what a jailbreak is, and always has been. It's freedom for your device, always provided freely, no charge, as soon as they possibly can. I really hope the groups don't sell out, or we can say goodbye to the likes of Cydia past iOS 8.4.

The following 5 users say thank you to JB for this useful post:

Dog88Christian, MODZ4FUN420, Specter, xkoeckiiej
09-21-2015, 10:56 PM #29
Alt's Avatar
Alt
Banned
Originally posted by JB View Post
It would definitely be interesting to see what they could do!


Fuck it, gonna learn how to code and code a NGU shoutbox app!
09-21-2015, 10:57 PM #30
JB's Avatar
JB
[i]Remember, no Russian.[/i]
Originally posted by Alt View Post
Fuck it, gonna learn how to code and code a NGU shoutbox app!


>make a PHP script that connects to NGU SB
>upload to 000webhost
>visit on iPhone
>add bookmark to homescreen
>profit?!?!?
09-21-2015, 11:00 PM #31
Alt's Avatar
Alt
Banned
Originally posted by JB View Post
>make a PHP script that connects to NGU SB
>upload to 000webhost
>visit on iPhone
>add bookmark to homescreen
>profit?!?!?

You must login or register to view this content.
09-21-2015, 11:01 PM #32
JB's Avatar
JB
[i]Remember, no Russian.[/i]
Originally posted by Alt View Post
You must login or register to view this content.


You must login or register to view this content.
09-21-2015, 11:05 PM #33
Alt's Avatar
Alt
Banned
Originally posted by JB View Post
You must login or register to view this content.


You must login or register to view this content.

The following user thanked Alt for this useful post:

JB
09-25-2015, 11:41 AM #34
Joel's Avatar
Joel
[move]Sal:madsal::laim:[/move]
and I bet ZERODIUM makes more money from Apple themselves.
09-25-2015, 12:59 PM #35
Alt's Avatar
Alt
Banned
Originally posted by Joel View Post
and I bet ZERODIUM makes more money from Apple themselves.


Inb4 Apple are behind this :p

Copyright © 2024, NextGenUpdate.
All Rights Reserved.

Gray NextGenUpdate Logo