Many companies give out rewards for vulnerabilities found in their software, and Samsung is now joining those ranks. The Korean tech company's Mobile Security Rewards Program has just gone public, enabling security researchers to receive awards of up to $200,000 per bug found.
The Mobile Security Rewards Program first materialized in January 2016 as a pilot, but it's only just become official. Rewards will be handed out to those who can find potential vulnerabilities within the latest versions of Samsung's Mobile Services, including Bixby, Samsung Pay, Samsung Pass, and more, in all Samsung devices that receive monthly or quarterly security updates. That amounts to 38 devices in total. Researchers can receive up to $200,000 for a single bug discovered, which is about on par with what other tech companies are offering.
If you're a security researcher who's interested in doing this, check out Samsung's mobile security site in the source below. Hack away!
Samsung to Launch Mobile Security Rewards Program, Welcoming Security Research Community
Samsung Electronics today announced the launch of its inaugural Mobile Security Rewards Program, a new vulnerability rewards program which invites members of the security community to assess the integrity of Samsung’s mobile devices and associated software to identify potential vulnerabilities in those products. By leveraging the skills and expertise of the security research community, Samsung will strengthen its ongoing commitment to providing customers with a secure mobile experience.
“As a leading provider of mobile devices and experiences, Samsung recognizes the importance of protecting users’ data and information, and prioritizes security in the development of each of its products and services,” said Injong Rhee Executive Vice President and Head of R&D, Software and Services of the Mobile Communications Business at Samsung Electronics. “As part of our commitment to security, Samsung is proud to work in close partnership with the security research community to ensure that all of our products are monitored closely and continually for any potential vulnerabilities.”
Samsung’s Commitment to Mobile Security
Samsung’s Mobile Security Rewards program is the latest initiative to demonstrate the company’s steadfast commitment to enabling secure experiences for all its customers. The rewards program kicked off with a pilot in January 2016 to ensure an efficient and productive public introduction to the broader security community.
Additionally, since October 2015 Samsung has been releasing monthly security updates for its flagship devices. This industry-leading pace of updates would not be possible without the cooperation and assistance of security researchers across the globe
Mobile Security Rewards Program Details
The program will cover all of Samsung’s mobile devices currently receiving monthly and quarterly security updates, a total of 38 devices*. In addition, the program will reward submissions for potential vulnerabilities in the latest Samsung Mobile Services, including Bixby, Samsung Account, Samsung Pay and Samsung Pass, among others. Dependent upon the severity of a given submission, as well as the researcher’s ability to provide proof of concept, Samsung will issue rewards of up to $200,000.
The Mobile Security Rewards Program is effective immediately. For additional information, including terms and conditions, please visit the Samsung Mobile Security page.
* The number of devices receiving monthly and quarterly updates may vary by market or region.