Those who find vulnerabilities in Google's mobile operating system can earn cash awards similar to those Google pays for weaknesses in Chrome. November 19, 2013 4:00 AM PST (Credit: Stephen Shankland/CNET) Google has expanded its bug-bounty program to cover vulnerabilities uncovered in Android. The program began with Chrome and expanded it to Google's own Web sites and other open-source software projects, too. Under the program, people who find security holes get paid bounties. That's often a few hundred dollars, but particularly skilled attacks can mean big money -- $50,000 last week for a one expert who goes by the name Pinkie Pie, for example. The broader expansion, called the Patch Reward Program, now includes Android, Google security team member Michal Zalewski said in a blog post Monday. The program also now includes three widely used Web server packages: Apache's http, Nginx, and Lighttpd, Zalewski said. Via The Next Web
Those who find vulnerabilities in Google's mobile operating system can earn cash awards similar to those Google pays for weaknesses in Chrome.
Google has expanded its bug-bounty program to cover vulnerabilities uncovered in Android.
The program began with Chrome and expanded it to Google's own Web sites and other open-source software projects, too. Under the program, people who find security holes get paid bounties. That's often a few hundred dollars, but particularly skilled attacks can mean big money -- $50,000 last week for a one expert who goes by the name Pinkie Pie, for example.
The broader expansion, called the Patch Reward Program, now includes Android, Google security team member Michal Zalewski said in a blog post Monday.
The program also now includes three widely used Web server packages: Apache's http, Nginx, and Lighttpd, Zalewski said.
Via The Next Web
