Apple

Reporting Security Issues:

To report security or privacy issues that affect Apple products or web servers, please visit:

• Apple Security Portal

Security Updates and Acknowledgments:

Apple distributes information about security issues in its products through:

• Apple Security Updates

Researchers who have reported potential security issues on Apple's web servers are credited on:

• Apple Web Server Security Acknowledgements

Apple Security Research:

Stay informed about the latest security research from Apple:

• Apple Security Research Blog

Security Bounty Program:

For information about Apple's security bounty program:

• Apple Security Bounty Program
• Bounty Categories
• Bounty Guidelines

Scope

The Apple Security Bounty program extends to security research covering all Apple products and public-facing services, except research involving any of the following:

• Apple Pay
• Any non-public-facing Apple system
• Phishing, social engineering, or similar techniques

The Apple Security Bounty program does not extend to third-party services. Apple Security Research Terms & Conditions

Additional Information:

When we receive your security report, we will send an automatic acknowledgement. If you do not receive this email, please check the contact information and submit again.For the protection of our customers, Apple generally does not disclose, discuss, or confirm security issues until a full investigation is complete and any necessary patches or releases are available.Notifications published by Apple Product Security are signed with the Apple Product Security PGP key. We encourage you to verify the signature to ensure that the document was indeed written by our staff and has not been changed.