Kaspersky reported one of the iOS vulnerabilities found in Operation Triangulation. However, in a bizarre update, Apple reportedly refused to pay the security bounty.
  • Kaspersky uncovered iOS vulnerabilities in ‘Operation Triangulation’, reported to Apple, but was refused bounty payment
  • Apple’s Security Bounty Program offers rewards up to $1 million for discovering vulnerabilities to prevent them from being sold on the dark web
  • Apple’s refusal to pay Kaspersky could be due to restrictions on financial transactions with companies in sanctioned countries like Russia.
  • cbarrick@lemmy.worldEnglish
    0·
    4 months ago

    Apple Security Bounty awards may not be paid to you if you are in any U.S. embargoed countries or on the U.S. Treasury Department’s list of Specially Designated Nationals, the U.S. Department of Commerce Denied Person’s List or Entity List, or any other restricted party lists.

    Kaspersky can whine all they want. Russia is embargoed. They’re not getting their money.

    Kaspersky is a good company doing good work in the cyber security space. Unfortunately, because of the embargo, they may have to turn to the black market to sell future exploits. Or maybe not; I’m not totally sure what kind of ethical standards they have.

    • Fizz@lemmy.nzEnglish
      0·
      4 months ago

      It would be very very bad for world if the folks at Kaspersky turned to black hat activity

      • lud@lemm.eeEnglish
        0·
        4 months ago

        That is not for Apple to decide. They should just follow the law.

    • AwesomeLowlander@lemmy.dbzer0.comEnglish
      0·
      4 months ago

      Kaspersky also has a bunch of US-based subsidiaries or partners they’re selling their software through. Or Apple could have just escrowed their reward until the embargo was over.