Vulnerability Reward Program undoubtedly can achieve a win-win situation for Google internal security test program is an excellent complement to; and for security experts, instead of using it as a malicious attack or sell to others, this approach can be avoided Follow-up security risks, but also to win the attention of companies such as Google and attention, perhaps to have better development.
Google said more than $ 1 million was reported and reported vulnerabilities in Google’s products and Android systems in 2017, while Chrome’s vulnerabilities were slightly less, but also allowed a total reward of $2.9 million.
Google said more than 50 of these security experts’ rewards totaled more than $125,000, and an additional $50,000 was awarded to users participating in the patch rewards program.
