It seems this year bug bounties are getting really serious, especially on the secondary market involving exploit trading firms, not direct to the software producer or owner. $500,000 isn’t chump change and would be a good year for a small security team, especially living somewhere with a weaker currency. Even for a solo security researcher […]
So Malwarebytes bug bounty program is live, the official name is actually Malwarebytes Coordinated Vulnerability Disclosure Program – what a mouthful (guidelines here). It’s good to see, bug bounty programs typically tend to have a nett positive effect and end in win-win situations for researchers and software vendors alike. In an effort to encourage researchers […]
There’s been a fair bit of news about bug bounty programs in the past year or so, with Twitter officially starting to pay bug bounties at the end of 2014 and Google recently removing the caps from their program and making Pwnium all year round. The latest news is Pinterest bug bounty program has started […]
There are various bug bounty programs, with Google being one of the forerunners in the field – Twitter was late to the party just joining in September 2014. The latest development is that Google is stopping the annual Pwnium hack fest aimed at the Chromium project to stop bug hoarding, which makes Pwnium essentially a […]
Tags: bug bounty, cansecwest, chrome bug bounty, chrome exploits, chromium security, google, google bug bounty, pwnium
Posted in: Exploits/Vulnerabilities | Add a CommentSo the Twitter bug bounty program is now official, they are actually paying – and not a bad amount too. A minimum of $140 for a confirmed bug with no defined maximum. This includes the Twitter website itself and any sub-domain (mobile, ads, apps etc), and the official mobile apps for iOS and Android. It’s […]
We’ve covered various stories about companies offering hackers and security researchers bounties for giving them working exploits for their software/website etc. Early runners in the game were – Google Willing To Pay Bounty For Chrome Browser Bugs Now, 2 years down the road, Facebook has decided it’s a good idea to offer up a $500 […]
The trend of paying for bugs is certainly catching on, the most recent entrant to the field is Deutsche Post the German postal service. They announced this week a security cup for their new online secure messaging service. The bug bounty trend has resurfaced recently with Mozilla increasing its bounty to $3000 and Google increasing […]
Tags: bounty hackers, bug bounty, bug contest, deutsche bug bounty contest, deutsche post, deutsche post bug bounty, deutsche post security cup, e-postbrief, eff, german, german federal postal service, german postal service, germany, jennifer granick, paid for bugs, paid to hack, thorsten holz
Posted in: Exploits/Vulnerabilities, General News | Add a CommentThere’s been a number of bounty programs in the past year or so with Mozilla being one of the forerunners with their Mozilla Security Bug Bounty Program. There are others like Google offering rewards for bugs in Chrome, and other specific high profile bounties like when Microsoft Offered $250K Bounty for Conficker Author. Mozilla on […]
Tags: bug bounty, exploit, firefox, firefox bug bounty, firefox exploit, firefox exploit bounty, firefox-vulnerability, mozilla, mozilla bounty, mozilla bug bounty, mozilla firefox, mozilla security bug bounty, security bug, security bug bounty, vulnerability
Posted in: Exploits/Vulnerabilities, Programming, Web Hacking | Add a CommentThis is a pretty interesting development from Google and also seems to be coming much more common now, companies openly offering payments for bugs/vulnerabilities discovered in their software. It’s a chance for the white-hat guys to earn a few bucks, but honestly I don’t think it’s going to change anything. Especially not when we’re talking […]
Tags: bounty for exploits, Browser-Hacking, browser-security, bug bounty, chrome, chrome browser, chrome bugs, chrome exploits, chrome security, chrome vulnerabilities, exploit bounty, google chrome, google chrome security, google exploit bounty, paid to hack
Posted in: Exploits/Vulnerabilities, Programming, Web Hacking | Add a Comment
