Since its launch in November 2010, Google’s Vulnerability Reward Program has generated nearly $12 million in bonuses. In just past 2017, the company paid $2.9 million to 274 security experts, but in 2016 it paid more than $3 million.
Vulnerability Reward Program undoubtedly can achieve a win-win situation for Google internal security test program is an excellent complement to; and for security experts, instead of using it as a malicious attack or sell to others, this approach can be avoided Follow-up security risks, but also to win the attention of companies such as Google and attention, perhaps to have better development.
Google said more than $ 1 million was reported and reported vulnerabilities in Google’s products and Android systems in 2017, while Chrome’s vulnerabilities were slightly less, but also allowed a total reward of $2.9 million.
Google said more than 50 of these security experts’ rewards totaled more than $125,000, and an additional $50,000 was awarded to users participating in the patch rewards program.
