A number of white hat security resources have taken up Google on their plans to for identified security holes. In fact, over 80 people have been paid $550,000, or just over $6k each, for finding these vulnerabilities. It is great to see these efforts to protect everyone’s personal information safe. Lets hope Google continues working with white hat hackers to keep the Android community safe.
The company launched the Android Security Rewards program in June 2015 in an attempt to harden the software. Google offered up to $30,000 for vulnerabilities. Although nobody received that amount, one researcher called heisecode was paid $75,750 for 26 vulnerability reports, Google said in a blog post Thursday.
Security holes can be used obtain personal data and gain access to other computing systems. Even bug bounties from Google and other software makers aren’t the only way to make money from vulnerabilities. The FBI reportedly paid less than $1 million for a hack that let it access an iPhone used by Syed Farook, a shooter in December’s San Bernardino terror attack.
For the Android security bounty program’s second year, Google raised reward levels in several cases. For the most complete type of Android takeover method, Google now will pay $50,000, up from $30,000.