Google will distribute 1 million dollars to fighters with bugs
Google Inc. is one of the first companies, if not the first, to offer third-party developers a reward for finding vulnerabilities in their software. In this case, in a short time, thanks to such a system, we managed to close several critical bugs. The developers who found the bugs and the company whose product has become even better turned out to be in the black. The “money for the found bug” system turned out to be so successful that now several companies at once took advantage of the experience of the “Corporation of Good”. As for the latter, the cash pool for third-party developers has increased even more. Now he is 1 million dollars.
This is the amount that will be issued to craftsmen who have found critical vulnerabilities in the Chrome browser. Thus, the reward will be up to 60 thousand dollars for the “hole” found by a third-party developer. The money will be issued if the developer can not only find the vulnerability, but also create an exploit with which you can work with this "hole". The announcement of cooperation with developers from the side was timed to the "competition" Pwn2Own. All this will be held next week, at the CanSecWest conference (Vancouver).
It is worth noting that Google has gone even further, and is going to reward not only those craftsmen who find a hole in Chrome, but also those who demonstrate the found vulnerability in the Windows environment, in Flash, in the driver for any device. The main thing - the vulnerability should be related to browsers, in addition, there must be an exploit that uses the found "hole". Such vulnerabilities are estimated at 20 thousand dollars. As for Chrome, here the budget is bigger - from 40 to 60 thousand dollars.
')
Why does Google need all this? Representatives of the company have already reported that money is spent for a reason. Thanks to such events, it turns out to detect and close the most unexpected vulnerabilities. This is understandable - after all, the best of the best participate in such conferences and events ... And all this, in the end, allows improving the quality of Google software, ensuring the safety of users of this company's software.
Via forbes
This is the amount that will be issued to craftsmen who have found critical vulnerabilities in the Chrome browser. Thus, the reward will be up to 60 thousand dollars for the “hole” found by a third-party developer. The money will be issued if the developer can not only find the vulnerability, but also create an exploit with which you can work with this "hole". The announcement of cooperation with developers from the side was timed to the "competition" Pwn2Own. All this will be held next week, at the CanSecWest conference (Vancouver).
It is worth noting that Google has gone even further, and is going to reward not only those craftsmen who find a hole in Chrome, but also those who demonstrate the found vulnerability in the Windows environment, in Flash, in the driver for any device. The main thing - the vulnerability should be related to browsers, in addition, there must be an exploit that uses the found "hole". Such vulnerabilities are estimated at 20 thousand dollars. As for Chrome, here the budget is bigger - from 40 to 60 thousand dollars.
')
Why does Google need all this? Representatives of the company have already reported that money is spent for a reason. Thanks to such events, it turns out to detect and close the most unexpected vulnerabilities. This is understandable - after all, the best of the best participate in such conferences and events ... And all this, in the end, allows improving the quality of Google software, ensuring the safety of users of this company's software.
Via forbes
Source: https://habr.com/ru/post/139034/
All Articles