Mozilla raises reward for found bugs up to $ 3000
Mozilla announced a raise from $ 500 to $ 3,000 for user rewards for security bugs found in Firefox, Thunderbird and Firefox Mobile (including beta versions and release candidates).
The reward program for bugs started six years ago, and until recently Mozilla was the only organization that officially paid money to hackers to report vulnerabilities. Neither Microsoft, nor Adobe, nor Oracle - in which bugs are found almost every week - do not do this. Hackers do not prevent anything from merging information into the black market.
Only Google followed the lead of Mozilla and started paying $ 500 for each bug in Chromium (and $ 1,337 for serious holes), but there were critics who called it a ridiculous amount of remuneration.
')
Recently, TippingPoint ( Zero Day Initiative program) and VeriSign ( iDefense program) are also engaged in purchasing information about fresh vulnerabilities, so that gradually a normal legal market will be formed in this area, where security specialists can monetize their knowledge.
The reward program for bugs started six years ago, and until recently Mozilla was the only organization that officially paid money to hackers to report vulnerabilities. Neither Microsoft, nor Adobe, nor Oracle - in which bugs are found almost every week - do not do this. Hackers do not prevent anything from merging information into the black market.
Only Google followed the lead of Mozilla and started paying $ 500 for each bug in Chromium (and $ 1,337 for serious holes), but there were critics who called it a ridiculous amount of remuneration.
')
Recently, TippingPoint ( Zero Day Initiative program) and VeriSign ( iDefense program) are also engaged in purchasing information about fresh vulnerabilities, so that gradually a normal legal market will be formed in this area, where security specialists can monetize their knowledge.
Source: https://habr.com/ru/post/99487/
All Articles