Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Broadens Bug Bounties To Include Web App Security

Posted by Soulskill on from the invitation-to-break-stuff dept.

n0-0p writes "Google just announced they will pay between $500 and $3133.70 for security bugs found in any of their web services, such as Search, YouTube, and Gmail. This appears to be an expansion of the program they already had in place for Chrome security bugs. 'We've seen a sustained increase in the number of high quality reports from researchers, and their combined efforts are contributing to a more secure Chromium browser for millions of users.' The rules and qualification details were posted today at the Google Online Security Blog."

2 of 50 comments (clear)

  1. Re:Does this imply.... by butalearner · · Score: 4, Informative
    From TFA:

    These categories of bugs are definitively excluded:

    • attacks against Google’s corporate infrastructure
    • social engineering and physical attacks
    • denial of service bugs
    • non-web application vulnerabilities, including vulnerabilities in client applications
    • SEO blackhat techniques
    • vulnerabilities in Google-branded websites hosted by third parties
    • bugs in technologies recently acquired by Google
  2. Re:Ain't the first, ain't the last by johny42 · · Score: 2, Informative

    Actually, it was one hexadecimal dollar, which amounted to 256 (standard) cents.