Google has announced a significant increase in rewards for its Google Bug Hunters program, offering more generous cash prizes to enthusiasts, developers, and hackers who find vulnerabilities.
Po message PCMag, the rewards are increasing up to 5x, with the maximum payout increasing to $151,515. “We’re excited to announce that we’re updating our rewards to 5x,” said Google security engineers Sam Erb and Krzysztof Kotowicz.
For example, the base reward for finding a logical error that allows taking control of an account in the Google system has increased from $13,337 to $50,000. The company is ready to pay $75,000 for detailed and high-quality reports on the vulnerabilities found. At the same time, the maximum size of the base reward will be $101,010, but taking into account the coefficient for a high-quality report, the reward can increase to $151,515.
Erb and Kotowicz explained that these multipliers were introduced to encourage clearer and more complete reporting, following the example of vulnerability scanning programs for mobile devices, Chrome, and Android (Mobile VRP, Chrome VRP, and Android VRP). Participants in the program can expect one of three multipliers, depending on quality: 1.5x for exceptional quality, 1.0x for good, and 0.5x for poor quality.
Recall that Google’s vulnerability research program was launched in 2010. Since then, the company has paid out $59 million in rewards to third-party developers. The record year for payments was 2022, when the amount reached $12 million. New rules for rewards for program Google Bug Hunters went into effect on July 11.
If you notice an error, select it with your mouse and press CTRL+ENTER.