Google increases disadvantage bounties to $20,000
On a Online Security Blog, Google has announced that a association will be augmenting a bounties for critical formula execution bugs found in prolongation versions of Google products to $20,000 (about £12,400). It will also be profitable $10,000 for reduction serious vulnerabilities like SQL injection flaws as good as $3,133.37 for other vulnerabilities such as cross-site scripting exploits.
The blog post says that a programme has been a good success so far, with over 780 disadvantage reports being perceived from around 200 individuals. In a initial year of a programme’s existence, Google has paid out around $460,000 in total. Bounties are usually paid to people if a vulnerabilities have been disclosed in a obliged manner, permitting Google to repair them before hackers can build proof-of-concept conflict code.
At a same time, Google has motionless to diminution rewards for flaws found in products that have been acquired by a association though have not nonetheless been integrated into a categorical Google product line. The association says that it will confirm what vulnerabilities validate as high risk issues and will be profitable bounties formed on that assessment.
Google is also using a separate annuity programme that pays out rewards for confidence problems found in a Chrome browser. Bounties for that programme operation from $500 to $3,133.37 for a singular vulnerability.
See also:
- Google expands a confidence rewards programmes, a news from The H.
(fab)