Chrome is not providing chump change.
Stephen Shankland/CNET
Since 2010, Google has paid anybody who reviews a bug within the Chrome browser. If changing into a digital bounty hunter seems like a candy gig, Google is upping the reward. Highlights embrace tripling the utmost baseline reward from $5,000 to $15,000 and doubling the utmost reward for a “prime quality report” from $15,000 to $30,000, in response to a Chrome Safety weblog publish.
Chrome OS additionally elevated its standing reward to $150,000 for “exploit chains that may compromise a Chromebook or Chromebox with persistence in visitor mode.” Safety bugs present in firmware and lock display bypasses additionally generate rewards, Google mentioned Thursday.
“The extra bonus given to bugs discovered by fuzzers working underneath Chrome Fuzzer Program can also be doubling to $1,000,” the weblog publish mentioned.
In fact, Google has particular guidelines about what qualifies as a “prime quality report,” which it particulars on its web page.
Google Play is not ignored. Rewards for distant code execution bugs have elevated from $5,000 to $20,000, theft of insecure personal information from $1,000 to $three,000, and entry to protected app parts from $1,000 to $three,000, the corporate mentioned. Should you “responsibly” disclose vulnerabilities to collaborating app builders, you may get a bonus, in response to Google. You’ll be able to learn extra concerning the program to be taught extra and see which apps qualify.
For the reason that Chrome Vulnerability Rewards Program’s creation in 2010, Google mentioned, folks have reported over eight,500 bugs and Google has paid out over $5 million.
Watch this:
Google engaged on Chrome pause button, Invoice Gates calls…
1:38
