Hacking bounty schemes are getting very popular with all the big names. Uber recently found a number of very concerning privacy issues with their application. This was found in a bounty programme. Well, it is not new news that Android has a number of vulnerabilities and generally the OS is in the press more than Apple’s iOS for bugs. On the 13th September Google launched their own version of a bounty program aimed at Android called “Project Zero Prize“. The twist is that it takes six months of bug chain discovery to be in for a chance of winning the top prize of $200,000!
Participants are now open to submit entries until March 14, 2017.
Despite the existence of vulnerability rewards programs at Google and other companies, many unique, high-quality security bugs have been discovered as a result of hacking contests. Hoping to continue the stream of great bugs, we’ve decided to start our own contest: The Project Zero Prize.
The goal of this contest is to find a vulnerability or bug chain that achieves remote code execution on multiple Android devices knowing only the devices’ phone number and email address.’ Posted by Natalie Silvanovich on the latest blog about the prizes.
If you are into the art of finding vulnerabilities and exploiting them, check out the blog in full and send us your feedback!