To encourage researchers to submit information on serious software bugs, Apple is expanding the pool of eligible products, opening up its bug bounty program to more researchers, and raising the potential prizes. The modifications were disclosed last week at the Black Hat security conference in Las Vegas by Ivan Krsti, head of Apple’s security engineering and architecture. The program, which is set to debut next year, would provide vetted researchers with customized iOS devices that enable them to look for challenging flaws. Veterans of the security sector applauded the decision because Apple had previously come under fire for being a little closed-off to outside researchers. Alex Stamos, a former top security officer at Facebook and Yahoo, tweets, “Dear Apple PR: @radian did a fantastic job representing your brand today.” “Apple is known for its
