A security researcher recently discovered serious vulnerabilities in Google Home smart speakers that could allow an attacker to install a "backdoor" account on the device and gain remote access.
Bug bounty program RSS
The expansion of Intel's open Bug Bounty program with the launch of Project Circuit Breaker is the next step in joining hands with researchers to boost the industry's security assurance practices.
Zerodium has increased the prize bounty for zero-click remote code executions (RCEs) on Microsoft Outlook up to $400,000. However, the firm has noted that the rise may only be temporary.
Meta has announced that it will be offering bounties for scraping bugs and scraped datasets related to its products. The latter features a unique system that does not offer monetary bounties directly.
Meta has updated its bug bounty program to better outline the rewards for finding various bugs. It also lists the Ray-Ban Stories glasses as a device that researchers can find vulnerabilities for.
Microsoft has been accused of slashing bug bounty reward money by large amounts by several security researchers. One of them said his finding was worth just 10% compared to the earlier value.
Google has decided to launch a new dedicated website that unifies the different VRPs and makes publishing bug reports and submissions easier. This is to celebrate 10 years of its VRP.
Apple has kicked off a new security research program that will provide specialized devices to bug hunters to make it easier for them to identify issues in iOS. Devices will be limited initially.
Apple has kicked off its bug bounty program for everyone who could identify vulnerabilities in its various software products and hardware devices. Bug hunters can receive up to $1.5 million.
OnePlus has announced its first-ever bug bounty program with rewards of up to $7,000 for finding security issues in its system. It also announced a partnership with the security platform HackerOne.
Amat Cama and Richard Zhu have emerged victorious from Pwn2Own, successfully exposing numerous security vulnerabilities, which allowed them to take home a Tesla Model 3 and $375,000 in prize money.
Microsoft has announced the Identity Bounty Program, inviting security researchers to find vulnerabilities in identity services, and offering payouts ranging from $500 to $100,000.
Microsoft today announced that it will be indefinitely extending its Bug Bounty Program for Edge, which was originally slated to end on June 15. It offers up to $15,000 for finding bugs.
Microsoft today announced a Bug Bounty Program for Office Insiders on Windows. Eligible Bounty payouts for vulnerabilities that are discovered by users are between $500 and $15,000.
Microsoft has launched a "bug bounty" program for Project Spartan. Project Spartan will be Microsoft's latest browser that will be included in Windows 10. The program will end on July 22, 2015.
