Adding the donation link on the top banner should drive some donations. Currently, I can see it at the bottom.

I think you need to read that quote again.

If you present your research such as even a 5-year-old kid understands it then it will be suitable for the wider world.

"Often I am so overwhelmed that I just watch stuff on youtube." That's was funny )) I would recommend reading some books on this topic for ex: Essentialism, The power of habit. In general, this comes from a lack of priority so use the Eisenhower Matrix to establish that priority and make the conscious decision to do the one thing which is most important.

I found 75k for such a severe security issue a low figure, on apple security bounty page the max pay for such exploit is 500k. https://developer.apple.com/security-bounty/

It’s a bug in Safari, not in the webcam so that may be why?

That could be, but it’s still far too low.

I imagine that a Black Mirror type of scandal involving this exploit could do many millions if not billions in damage to Apple’s finances. Not to mention what such an exploit might fetch on the black market.

I firmly believe that a government intelligence operation would be willing to pay far more than 75k for this.

Bug bounty payouts are not meant to match what you can get on the black market.

That seems like a major flaw in bug bounties then. What else could they be competing with?

There's more to the black market than just money: you often need to deal with unscrupulous individuals (possibly a couple of levels removed) and risk going to jail. The bounty incentivizes researchers to research and disclose, not disincentive people who were going to sell them anyways (who will pay whatever it costs to get these anyways).

The black market responds to the legal markets. Unless you think that these companies can ultimately win a bidding war against black market actors, trying too desperately to win over the black hats will just enrich them further.

They're designed to disincentivize moral people from selling such secrets on the black market, and show that companies care about fixing bugs. Authoritarian governments will always be more than willing to offer large sums of money for such exploits.

SEEKING WORK - London or Remote iOS Developer with 5++ years experience using Swift, Objective-C. For the last 4 years I've been working with small-medium startup in fintech and ecommerce fields.

Contact me at [email protected]

A Todoist app, mac notes or OneNote and pocket to bookmark pages. Why over complicate things!? And if you want to have a framework to memorize things try PolarBookself and Anki flashcards.

It's unclear to me how this post made to the top when it references SwiftUI - a framework which is still in beta and shouldn't even be brought into discussion. On the other hand, UIKit is documented about ~90% which is an insane amount and this is what most of the iOS devs are using on a day-to-day basis.

Looking at things related to Entropy I can can clearly see the company I'm working for(which is sad).Considering that I'm not at leadership position, my next action is to quit and find a better one.

It really resonates with me and a job I used to have too.