Hi! My name is Cédric Bozzi, I make websites and iOS apps, and this is my blog about technology (mostly a Twitter archive, really).

2 September 2014

I’m reminded of a comment I saw on Reddit yesterday: not only can Apple be maddeningly slow at fixing security vulnerabilities after they’ve been reported, but it also doesn’t offer bounties for reporting them. You know, just the kind of thing that might motivate a hacker to contact Apple instead of downloading a copy of Jennifer Lawrence’s iCloud backup. (Or, more likely, just after downloading it, but that would still be progress.) I’m not so good at business, but I kinda feel that Apple could afford it. And, evidently, so do all the hackers who prefer to exploit a vulnerability rather than be, at best, graciously credited in the patch notes by one of the richest companies on Earth.

You can’t be lazy or complacent when it comes to security; you can’t be stingy, either.

Archives

2001 01 02 03 04 05 06 07 08 09 10 11 12

2002 01 02 03 04 05 06 07 08 09 10 11 12

2003 01 02 03 04 05 06 07 08 09 10 11 12

2004 01 02 03 04 05 06 07 08 09 10 11 12

2005 01 02 03 04 05 06 07 08 09 10 11 12

2006 01 02 03 04 05 06 07 08 09 10 11 12

2007 01 02 03 04 05 06 07 08 09 10 11 12

2008 01 02 03 04 05 06 07 08 09 10 11 12

2009 01 02 03 04 05 06 07 08 09 10 11 12

2010 01 02 03 04 05 06 07 08 09 10 11 12

2011 01 02 03 04 05 06 07 08 09 10 11 12

2012 01 02 03 04 05 06 07 08 09 10 11 12

2013 01 02 03 04 05 06 07 08 09 10 11 12

2014 01 02 03 04 05 06 07 08 09 10 11 12

2015 01 02 03 04 05 06 07 08 09 10 11 12

2016 01 02 03 04 05 06 07 08 09 10 11 12

2017 01 02 03 04 05 06 07 08 09 10 11 12