The Android Vulnerability Reward Programme (VRP) had a record-breaking 12 months in 2022 with $4.8 million in rewards and the very best paid report in Google VRP historical past of $605,000.
“Submitting an impressive 200+ vulnerabilities to the Android VRP, Aman Pandey of Bugsmirror remains one of our programme’s top researchers,” stated Sarah Jacobus of Vulnerability Rewards Team at Google.
Since submitting their first report in 2019, Pandey reported greater than 500 vulnerabilities to the programme.
The invite-only Android Chipset Security Reward Programme (ACSRP) awarded $486,000 in 2022 and obtained over 700 legitimate safety studies.
Chrome VRP had one other unparalleled 12 months, receiving 470 legitimate and distinctive safety bug studies, leading to a complete of $4 million of VRP rewards.
Discover the tales of your curiosity
“Of the $4 million, $3.5 million was rewarded to researchers for 363 reports of security bugs in Chrome Browser and nearly $500,000 was rewarded for 110 reports of security bugs in ChromeOS,” knowledgeable Jacobus.In August 2022, the corporate launched open supply software program (OSS) VRP to reward vulnerabilities in Google’s open supply initiatives.
Since then, over 100 bug hunters have participated within the programme and have been rewarded over $110,000, in response to the corporate.
“We’ve awarded more than $250,000 in grants to over 170 security researchers,” it added.
Source: economictimes.indiatimes.com