bug bounty

  • Google will pay you $1,000 to hack some of Android’s most popular apps

    Google will pay you $1,000 to hack some of Android’s most popular apps

    Details are light at the moment, but a bit of news out of Google’s Playtime developer event this morning: the company is launching a Google Play bug bounty program that’ll encourage researchers to poke around and look for vulnerabilities in some of Android’s most popular third-party apps. Read More

  • Researcher finds bug that allowed free Uber rides

    Researcher finds bug that allowed free Uber rides

    Uber has patched a bug in its code that allowed a researcher — and anyone else who might’ve discovered the problem — to hail Uber rides without paying for them. Anand Prakash, a security researcher, discovered the bug in August and received permission from Uber to test it in the U.S. and India. He was able to successfully exploit the bug, getting free rides in… Read More

  • HackerOne scores $40 million investment as bug bounty platform growth continues

    HackerOne scores $40 million investment as bug bounty platform growth continues

    For the past several years, HackerOne has been helping customers build bug bounty programs to find vulnerabilities in their software, and today it hauled in a big bounty of its own — a $40 million Series C investment led by Dragoneer Investment Group. Existing investors NEA and Benchmark also participated, as well as a strategic investor the company chose not to disclose. It brings… Read More

  • Google’s bug bounty program pays out $3 million, mostly for Android and Chrome exploits

    Google’s bug bounty program pays out $3 million, mostly for Android and Chrome exploits

    If you’re willing to hunt for flaws within its vast array of software and services, Google’s happy to pay up. Over the course of its 2016 Vulnerability Rewards Program, the company paid out $3 million—a third of the total $9 million that enthusiastic researchers have earned since the initiative, more colloquially known as a bug bounty program, launched in 2010. The… Read More

  • Nintendo will pay you up to $20,000 to hack the 3DS

    Nintendo will pay you up to $20,000 to hack the 3DS

    So you bought a Nintendo 3DS to play some Pokemon Sun… but now your Pokedex is complete and you’ve explored every inch of Alola. Now what? If you’ve got a technical background, you might consider poking around the 3DS itself. There might just be a big ol’ stack of cash in it for you. Nintendo has just launched a bug bounty program by way of HackerOne. Find a bug that… Read More

  • Hacking for investor profit Crunch Network

    Hacking for investor profit

    Just over four years ago, I sat through what still is the most viscerally disturbing information security talk I’ve ever seen. The late Barnaby Jack, a brilliant security researcher, had just demonstrated in front of 300 people how he could wirelessly take control of an Implantable Cardioverter Defibrillator and cause it to discharge enough electricity to jump a 12 mm spark gap. Read More

  • Yelp invites hackers to expose vulnerabilities through bug bounty program

    Yelp invites hackers to expose vulnerabilities through bug bounty program

    Hackers, start your engines. Yelp launched a public bug bounty program today, inviting the world’s hackers to pick apart its websites and mobile app in search of vulnerabilities that could affect reviewers and businesses. Yelp will pay researchers for their work, starting at $100 and maxing out at $15,000 for more complex or critical exploits. The program, which Yelp is coordinating… Read More

  • Uber launches bug bounty program that pays hackers to find security issues

    Uber launches bug bounty program that pays hackers to find security issues

    Uber announced today that after a year of Beta testing, it was opening its first ever bug bounty program running on the HackerOne bug bounty platform. Bug bounty programs for those of you not familiar with the lingo, pay hackers or researchers as they prefer to call them to find security vulnerabilities on a software platform. In essence, it’s turning people who might have once… Read More

  • Google doubles max ChromeOS bug bounty to $100k

    Google doubles max ChromeOS bug bounty to $100k

    After shelling out $2 million in rewards to security bounty hunters in 2015, Google today announced it’s doubling the reward for revealing top security flaws, from $50,000 to $100,000. Google has been pretty serious about its security on everything Chrome, and has had a bug-hunting bounty in place since 2010, eligible to hackers who find vulnerabilities on Chromebooks, the Chrome browser… Read More