Google's bug bounty rewards help it keep its services and products and thus its customers and users secure, so the company is always looking to expand the scope of those initiatives. After it already increased the payout of the Play Store and Chrome security bug-finding programs earlier this year, it has now decided to expand the Android Security Rewards and raise the maximum award. Read More
A year ago today Google announced Android Security Rewards, an expansion of its Vulnerability Rewards Program. Find a vulnerability, tell Google about it, help them fix the issue, and take home money. That's the concept, and it's a common one in the tech industry.
Google handed out over half a million bucks to 82 individuals over the past year. This averaged out to $2,200 per reward. Researchers averaged higher payouts, at $6,700. One, @heisecode, received $75,750 for 26 vulnerability reports. 15 researchers received $10,000 or more. Read More
Google pays people to find and close the flaws in its systems. This is pretty common throughout the tech industry, largely because it motivates people to approach from different backgrounds and with contrasting ways of thinking, something you can't get from internal employees. With Google products getting into the hands of billions of people and serving mission critical roles, it's crucial that services and information are safe.
Over the past five years, Google says it has paid over 1.5 million dollars to people that discovered vulnerabilities in Chrome and other products through its Security Rewards program. Now it will expand this program to cover Android. Read More