AfterDawn: Tech news

Google now offering rewards to users who report bugs, flaws

Written by Andre Yoskowitz (Google+) @ 03 Nov 2010 0:14 User comments (8)

Google now offering rewards to users who report bugs, flaws Following in the footsteps of other companies such as Mozilla, Google has announced today that it is offering a reward for users that find and report security flaws in their software and Websites.
Says the company: "We are announcing an experimental new vulnerability reward program that applies to Google Web properties. As well as enabling us to thank regular contributors in a new way, we hope our new program will attract new researchers and the types of reports that help make our users safer."

Depending on how critical the flaw is, the reward will range from $500 to $3100. If you decide to give the prize to charity, Google will double the donation.

The bugs can be found on Google, YouTube, Blogger, Orkut and others. Android and Picasa are exempt.

Google started a similar program in January for its Chrome browser which they say "uncovered a wide range of great bugs...contributing to a more secure Chromium browser for millions of users."

Anyone who gets paid for the new program will also have their name featured on the credits page of the site.

Previous Next  

8 user comments

13.11.2010 0:34

You'll never see Microsoft do this.

23.11.2010 0:51

Amazing...they completely ignore bug reports relating everything else, yet they pay money to people that find security related bugs.

33.11.2010 1:07

I wonder why android is exempted, I guess its because its open source?

This message has been edited since its posting. Latest edit was made on 03 Nov 2010 @ 1:07


43.11.2010 3:29

No, because they never call android bugs critical, no matter how bad they are.

This message has been edited since its posting. Latest edit was made on 03 Nov 2010 @ 3:29

53.11.2010 4:34
Grammarpatrol
Unverified new user

All you penetration testers had better run and hide...

63.11.2010 10:04

I don't know of many pen-testers out of work that would do this, unless it was for charity or there were teenagers/college students. Either way good for google and those wishing to get their name out. MS used to do something like this 10 years ago but they kept it underground and it was when Gates was in charge. You'll never see Balmer give a shred of $, edited by ddp guy hates the sound of charity too.

This message has been edited since its posting. Latest edit was made on 03 Nov 2010 @ 14:12

73.11.2010 15:49

The top reward is $3133.7 ---Chikn

This message has been edited since its posting. Latest edit was made on 03 Nov 2010 @ 15:50

83.11.2010 16:03

Originally posted by Mysttic:
I don't know of many pen-testers out of work that would do this, unless it was for charity or there were teenagers/college students. Either way good for google and those wishing to get their name out. MS used to do something like this 10 years ago but they kept it underground and it was when Gates was in charge. You'll never see Balmer give a shred of $, edited by ddp guy hates the sound of charity too.
It was a poke at the incorrect grammar used in the headline.

Comments have been disabled for this article.

News archive