Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You can't demand a bug bounty payout, especially because Apple didn't have a bug bounty back then (and their bug bounty today is invite-only).

Also, if you read the rest of the comment, Apple didn't ignore it. They fixed it.



I did read the rest of the comment. So I am asking if someone is either making this up or if not it's important to shame Apple for its secrecy. That's my view on responsible disclosure; either ack someone's hard work or let every bug free in the wild. What's the point when your work isn't being acked?


> What's the point when your work isn't being acked?

To get the bugs fixed?

Also, we don't know why they didn't get recognition. The simplest answer is someone else may have reported it first. But it doesn't really matter. And I really don't see how "secrecy" comes into play here.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: