Facebook will pay for found bugs for $ 500

Facebook has joined the list of companies that pay for holes in their products. The minimum payment for vulnerabilities on Facebook is $ 500 (XSS, CSRF / XSRF, injections), but for specific bugs it can be increased. Detailed information is on page Whitehat hacking portal , in the same page for sending a message .

Specialists from Facebook’s security department say that white-head hackers now turn to them with reports 30-50 times a week, which reveals one or three bugs. The new program will establish closer and friendly relations with the hacker community. Facebook has been holding rich parties for Defcon for two years.

Currently, of all Internet companies, Google and Mozilla offer a reward for bugs found. Google pays from $ 500 to $ 3133.7 for bugs in the Chromium browser, as well as in all web services: * .google.com, * .youtube.com, * .blogger.com, * .orkut.com. For the year and a half of the program, about $ 300,000 has already been paid. Mozilla pays from $ 500 to $ 3000 for vulnerabilities in Firefox, Thunderbird and Firefox Mobile (including in beta versions and release candidates). Experience shows that Russian developers are active participants in these programs.