Communication with php pogram
Saturday November 1st 2014

Google Dramatically Raises the Pay it Offers Bug Finders





We’ve reported a number of times on bug bounties–cash prizes offered by open source communities to anyone who finds key software bugs–ranging from FOSS Factory’s bounty programs to the bounties that both Google (for the Chrome browser) and Mozilla offer. Google and Mozilla have increased their focus on cash bounties paid to people who find bugs in their applications and platforms, and there is evidence that these programs really work.

Google has steadily raised the amounts that it pays people who find bugs in the Chrome browser, and now the company has announced that it is also jacking up the bounties it pays to anyone who finds bugs on its online sites and in online applications.

Google’s new Vulnerability Reward Program (VRP) offers a maximum reward of $20,000 up from  $3,133, and there is a new $10,000 incentive in the bug bounty plan. You can find a complete table of payments available for various types of bugs on various platforms in this post

 Open source-focusec companies are having success with bug bounties.  Commercial companies focused on open source and open source communities at large can benefit from lots of efficiencies that arise from paying the public to debug software.Think about it: How much would Google have to pay its own developers to ferret out problems on its sites and in its applications?

In this post, you can find an update from Google on how its community-focused bug bounty programs are working. According to the post:

"We recently marked the anniversary of our Vulnerability Reward Program, possibly the first permanent program of its kind for web properties. This collaboration with the security research community has far surpassed our expectations: we have received over 780 qualifying vulnerability reports that span across the hundreds of Google-developed services, as well as the software written by fifty or so companies that we have acquired. In just over a year, the program paid out around $460,000 to roughly 200 individuals. We’re confident beyond any doubt the program has made Google users safer. Today, to celebrate the success of this effort and to underscore our commitment to security, we are rolling out updated rules for our program."

UPDATE: Google has also introduced its much rumored Google Drive cloud storage service today. You can sign up for 5GB of free storage. Find out more here

Related Activities

Related Software

Related Blog Posts



src='http://ads.gigaom.com/show/rss/'
alt=''
border='0'
/>

View full post on OStatic blogs

  • Share/Bookmark

More from category

Systemd is Back, Microsoft Hearts Linux, and Qubes OS

internet advertising News seemed a bit slow on this All Hallows Eve, but there was still plenty to highlight. Folks are [Read More]

Does Microsoft’s New Love for Open Source Extend Beyond the Cloud Team?

internet advertising In a recent post, I tackled the question of whether Microsoft has finally, truly warmed up to [Read More]

PLUMgrid Delivers Suite of Tools for OpenStack Clouds

internet advertising This week, PLUMgrid, which specializes in virtual network infrastructure for OpenStack cloud [Read More]

Boycott Linux, Fedora Beta a Go, and Drupal Yikes

internet advertising The top story tonight is a highly critical flaw in Drupal 7 that may have allowed a lot of [Read More]

DreamHost Takes its OpenStack IaaS Platform Out of Beta Tests

internet advertising DreamHost has now taken its DreamCompute infrastructure-as-a-service (IaaS) OpenStack cloud [Read More]

Twitter On Me

<p>Error: Twitter did not respond. Please wait a few minutes and refresh this page.</p>

Calendar

November 2014
M T W T F S S
« Oct    
 12
3456789
10111213141516
17181920212223
24252627282930