Google Pays $550,000 To People Who Found Security Holes In Android

Google Pays $550,000 To People Who Found Security Holes In Android

Google's Android mascot

Google’s Android mascot.

Stephen Shankland/CNET

Google paid 82 people a total of $550,000 in the last year for finding security vulnerabilities that could let hackers compromise phones, tablets, cars and other gadgets powered by the company’s Android software.

The company launched the Android Security Rewards program in June 2015 in an attempt to harden the software. Google offered up to $30,000 for vulnerabilities. Although nobody received that amount, one researcher called heisecode was paid $75,750 for 26 vulnerability reports, Google said in a blog post Thursday.

Security holes can be used obtain personal data and gain access to other computing systems. Even bug bounties from Google and other software makers aren’t the only way to make money from vulnerabilities. The FBI reportedly paid less than $1 million for a hack that let it access an iPhone used by Syed Farook, a shooter in December’s San Bernardino terror attack.

For the Android security bounty program’s second year, Google raised reward levels in several cases. For the most complete type of Android takeover method, Google now will pay $50,000, up from $30,000.

Threat Intel

via News ≈ Packet Storm

June 17, 2016 at 08:18AM