As Google is operating Bug Bounty Program from 2010, and until immediately Google have rewarded many researcher with the financial reward, Corridor-of-Fame, and a few swags additionally. So right here now Search big is growing the worth of its bounty program reward.
From now onward’s Google shall be paying up to $forty,000 to whoever shall be in a position to level out bugs within the Android system. This transfer is a part of the brand new Android Security Rewards program.
The brand new safety rewards program only covers vulnerabilities discovered within the newest Android variations for Nexus telephones and tablets at present out there on the market within the Google Retailer in the USA.
Which means only safety holes recognized in Nexus 6 and Nexus 9 are eligible for a reward. Bugs in different widespread units or customized ROMs constructed for Nexus won’t qualify. Vulnerabilities in Nexus Participant, Android Put on, or Challenge Tango don’t qualify both, Google stated.
The search big is especially on the lookout for flaws in Android Open Supply Undertaking (AOSP) code, unique gear producer (OEM) libraries and drivers, the kernel, and TrustZone OS and modules. Vulnerabilities in chipset firmware may additionally be eligible.
The reward will begin at US$500 . If the bug reported is essential, the bounty can be larger. A further US$30,000 may also be awarded for exploits that compromises TrustZone or Verified Boot.