During this year's Black Hat security conference in Las Vegas, Apple announced that it will give up to $1 million to anyone who finds a critical security flaw in its software. That's the highest bounty a company has ever offered. Of course, the $1 million bounty only applies to a specific case in which the attacker has to access the iPhone kernel without the need of any action from the user. The highest bounty Apple has offered before that is $200,000 for friendly reports of bugs. All security researchers are welcome to submit their reports and Apple also wants to make things easier...
Source: https://www.gsmarena.com/apple_pays_up_to_1_million_for_finding_critical_security_flaws_in_its_devices-news-38599.php