Find a bug in Chrome make money
Google calls the program “experimental,” but says it gives security researchers new incentives to report Web flaws directly to Google’s security team. “As well as enabling us to thank regular contributors in a new way, we hope our new program will attract new researchers and the types of reports that help make our users safer,” Google said Monday in a blog posting announcing the program.
The idea is to give Google a chance to fix the vulnerabilities before the bad guys get their hands on them. So, in order to qualify, security researchers must privately disclose new flaws to Google first before they go public with their research. In return, the hackers qualify for cash rewards of between US$500 and $3,133.70, depending on the severity of the flaw.
Google has already paid out about 50 such rewards for Chrome bugs since launching a similar program last January. Google doesn’t pay out for bugs in all of its products, however. There are no bounties for finding flaws in Android, Picasa or Google Desktop, for example.
With the Web program, Google is breaking new ground. (Source: InfoWorld)
Very interesting way to find security bugs. Check out the risks and Google’s guidelines at the source.
Powered by ScribeFire.
- Google Offers Bounty to Web Bug Hunters (pcworld.com)
- Google calls bug bounty hunters to YouTube, Blogger (go.theregister.com)
- Rewarding web application security research (googleonlinesecurity.blogspot.com)
Posted on November 1, 2010, in Cybersecurity, Security, Security breach, Web and tagged Computer program, Google, Google Chrome, InfoWorld, Picasa, Security bug, World Wide Web. Bookmark the permalink. Comments Off on Find a bug in Chrome make money.