Security Experts:

Connect with us

Hi, what are you looking for?


Management & Strategy

Corellium: Apple Sued Us After Failed Acquisition Attempt

Florida-based virtualization company Corellium claims that the copyright infringement lawsuit filed by Apple comes in response to a failed acquisition attempt.

Florida-based virtualization company Corellium claims that the copyright infringement lawsuit filed by Apple comes in response to a failed acquisition attempt.

Corellium provides a virtual iPhone that can be used to find vulnerabilities and other types of bugs, and to test the functionality of mobile applications on different versions of the iPhone and the iOS operating system.

In a complaint filed in mid-August, Apple claimed Corellium was not authorized to copy its products.

Corellium submitted a response to the lawsuit in late October, but the version of the document that was made public at the time was heavily redacted.

Corellium on Thursday informed SecurityWeek that it has also filed an unredacted version of the document, along with a statement in response to Apple’s lawsuit.

“Apple has been aware of our ground-breaking technology since the company was founded, and at any point in the past two years, Apple could have notified us of their concerns. We think Apple’s lawsuit is driven by its own business interests rather than a genuine belief that we violated any of its rights,” Corellium stated.

The redacted version of the document showed that Apple had attempted to acquire Corellium’s predecessor, a company named Virtual, which provided similar technology and was eventually sold to Citrix. However, the unredacted version of the lawsuit response reveals that Apple made subsequent attempts to acquire Corellium.

Negotiations started in January 2018 and in the following months Apple was provided access to Corellium solutions, the virtualization firm claims.

“So why did Apple sue Corellium? Because it was not able to purchase Corellium or its predecessor company, Virtual, for the price it wanted. Consequently, Apple did the only thing it knew to do when it could not acquire Corellium for less than fair market value – file a lawsuit accusing Corellium of copyright infringement – even though Apple was not only aware of Corellium’s technology for several years, but actually encouraged its development,” Corellium said.

Corellium says Apple owes it $300,000 for macOS and iOS vulnerabilities reported through its bug bounty program. Corellium believes Apple initially did not pay out the rewards thinking that it would eventually own the company, and now it has filed a lawsuit in hopes of getting information on additional bugs for free.

“[This] lawsuit is not driven by Apple’s genuine belief that Corellium infringes its copyrights, but rather by its frustration at not being able to make Corellium’s technology its own,” Corellium said.

Related: Lawmakers Concerned About Apple’s Handling of FaceTime Spying Bug

Related: ‘Unpatchable’ iOS Bootrom Exploit Allows Jailbreaking of Many iPhones

Related: Apple Patches FaceTime Spying Vulnerability

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.

Management & Strategy

Microsoft making a multiyear, multibillion dollar investment in the artificial intelligence startup OpenAI, maker of ChatGPT and other tools.