Report a security or privacy vulnerability

If you believe you have discovered a security or privacy vulnerability in an Apple product, please report it to us.

If you need technical support for a security issue—for example, to reset your Apple ID password or to review a recent iTunes charge—view the Get help with security issues support article or contact Apple Support

If you have questions or concerns about Apple’s Privacy Policy or data processing, you can ask us about privacy

How to report a security or privacy vulnerability

If you believe you have discovered a security or privacy vulnerability that affects Apple devices, software, services, or web servers, please report it to us. We welcome reports from everyone, including security researchers, developers, and customers. 

To report a security or privacy vulnerability, please send an email to that includes: 

  • The specific product and software version(s) which you believe are affected
  • A description of the behavior you observed as well as the behavior that you expected
  • A numbered list of steps required to reproduce the issue and a video demonstration, if the steps may be hard to follow

Please use Apple's Product Security PGP key to encrypt sensitive information that you send by email. You can also use Mail Drop to send large files.

You'll receive an automatic reply from Apple to acknowledge that we received your report, and we’ll contact you if we need more information.

How Apple handles these reports

For the protection of our customers, Apple doesn't disclose, discuss, or confirm security issues until our investigation is complete and any necessary updates are generally available.

Apple uses security advisories and our security-announce mailing list to publish information about security fixes in our products and to publicly credit people or organizations that have reported security issues to us. We also credit researchers who have reported security issues with our web servers on the Apple Web Server Notifications page.

In certain cases, Apple pays rewards for sharing critical security issues. Learn more about the Apple Security Bounty


Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.

Published Date: