Google offers bounty for security bugs on its websites

Emil

TS Rookie
Google has begun offering cash for security bugs reported on its websites, following the success of its bug bounty program that pays hackers for finding security flaws in Chrome. The new vulnerability reward program applies to Google web properties (google.com, youtube.com, blogger.com, and orkut.com) but excludes Google's client applications (Android, Picasa, Google Desktop, and so on).

Read the whole story
 

ReMonster

TS Rookie
It certainly isn't new, but it is a great approach to keep there toolset secure. It also helps to know they are actively trying to prevent issues before they occur, instead of the OLD microsoft approach of patching after exposure.
 

Emin3nce

TS Rookie
We would like you to fix our bugs, but don't try really hard because you may actually find something? I mean, hear me out, crackers are usually 12 year old kids with a botnet who use automated scans etc to do a bulk of their work...

Generally to fight that sort of threat, shouldn't researchers do that very act?
 
G

Guest

Hilarious that they made the max 3,133.7.!

For those who don't "get it" - 3,133.7 = ELEET
 

TechFox

TS Rookie
i think its an awesome idea, might make be brake out my old coding eye to check the sources and if i find nothing at least i've brushed up on the knowledge that i used to love. nothing like making money while hacking. most security is slacking for the most part. just have to think outside the box.
 

lawfer

TechSpot Paladin
Guest said:
Hilarious that they made the max 3,133.7.!

For those who don't "get it" - 3,133.7 = ELEET
But what you "don't get" is, that you found that out using the very Google.
 

HaMsTeYr

TS Guru
Reminds me of what mozilla did with firefox really. Still, its a good approach to helping create better, more secure software
 

poertner_1274

secroF laicepS topShceT
Since Google can afford this, I think it's brilliant. It does 2 things in my eyes. It helps them secure their domains, as well as potentially acquire new talent to use on their team should they find someone who finds multiple flaws and become a good asset to their design team.
 

kaonis92

TS Enthusiast
Let's all go on a bug-finding safari! I guess it's going to be difficult to find a bug in google's sites though!
 

starfreezer

TS Rookie
I like the way they make people do things for them via a positive reward system. A politic I definitely prefer over the usual "We will come after you with rakes and torches" kinda approach we hear from time to time. Let's not hope someone comes along a reward people even more money if they can make Google's systems fail... hmm, I suppose that already exist... hmm, does that mean that this reward from Google doesn't matter as those who can actually make systems fail will always be in front because they get more cash!! Arrr, brain is melting...
 

fritz123

TS Rookie
it's smart for google in doing so. sometimes you need an outsiders perspective. it's like putting your enemies in your side. im really amazed at google. clap clap clap
 

TorturedChaos

TechSpot Chancellor
Not a brand new approach by any means, but still a good idea. Wouldn't mind seeing more companies do this. As starfreezer said, its always nice to see people try positive reinforcement for once.
 

klepto12

TechSpot Paladin
i agree with puiu if the bigger companies did this it would be great its really to bad that microsoft and the such don't do this.
 

hitech0101

TS Guru
Google taking a nice step but this did take a long time it seems they had discussed a lot about this move that's the thing with Google they have in depth discussions whether to go ahead or not they.Since they went with it any way they could have done it a lot earlier.