Apple Invites Researchers to Test iPhone Security

Red Dog Security

08 Sep 2025 — 1 min read

Apple has opened applications for its 2026 Security Research Device Program (SRDP), giving white-hat experts the chance to receive a specially configured iPhone for cybersecurity research. Applications are open until October 31, 2025.

What the Program Offers

Launched in 2020, SRDP provides researchers with “hackable” iPhones designed to make iOS analysis possible without bypassing normal user protections. These devices come with:

Shell access for running custom tools
Early access to iOS software and security products
Specialized utilities to support vulnerability research

The devices are loaned to participants on a 12-month renewable basis and are strictly for research, not personal use.

Who Can Apply

Apple says eligibility is limited to researchers with a proven record of uncovering security flaws on Apple platforms or other modern operating systems. Vulnerabilities found through SRDP may qualify for payouts through Apple’s bug bounty program.

Rewards and Results So Far

Although Apple rarely discloses full details of its bounty payouts, the company reported in 2024 that more than 100 SRDP participants had received rewards. Some payouts reached as high as $500,000, while the median was about $18,000.

Looking Ahead

Apple has not yet confirmed which iPhone model will be distributed for the 2026 program. Based on timing, it is expected to be either the iPhone 16 or the upcoming iPhone 17.

Unpatched Vulnerability Found in TP-Link Routers

TP-Link has confirmed a previously unknown zero-day vulnerability affecting several of its router models. The company said it is investigating the issue and preparing security updates. Discovery and Technical Details The flaw was discovered by an independent researcher using the alias ByteRay, who first reported it to TP-Link on May

AI Ransomware PromptLock Turns Out to Be a Research Project

What first appeared to be the world’s first case of AI-powered ransomware has turned out to be something else entirely: a university research project. From Discovery to Revelation Last month, security experts at ESET reported finding samples of malware called PromptLock on VirusTotal. They described it as the first

Law Enforcement Shuts Down Pirate Streaming Network Streameast

Egyptian authorities, working with the Alliance for Creativity and Entertainment (ACE), announced they have dismantled Streameast—described as the world’s largest illegal sports streaming network. Two alleged operators have been arrested. A Giant in Pirate Streaming Founded in 2018, Streameast offered free, ad-supported access to HD content from licensed

Kaspersky Lab Studies Hack Groups Attacking Russia

Kaspersky Lab specialists have conducted a technical analysis of the activity of 14 hacker groups that are actively targeting organizations in Russia, Belarus, and several other countries. Among them are hacktivist groups that appeared on the Russian threat landscape after 2022 and publicly identified themselves as “pro-Ukrainian.” Three Clusters of