Skip to main content

Facebook pays bug hunters $40,000 in less than a month

unlock facebookExactly a month ago, Facebook launched a scheme that offered payments to bug hunters who reported flaws in the site’s security system.

On Monday, the social networking giant announced that in the space of just three weeks the bug bounty program has paid out over $40,000 to people who’ve helped identify problems, with one particular bug spotter pocketing over $7,000 for reporting six different issues. Another expert picked up $5,000 for a single report.

In a blog post on Monday, Facebook’s chief security officer, Joe Sullivan, wrote about the success of the bug bounty program. “It has been amazing to see how independent security talent around the world has mobilized to help. The program has also been great because it has made our site more secure–by surfacing issues large and small, introducing us to novel attack vectors, and helping us improve lots of corners in our code,” he wrote.

Sullivan was also keen to clarify the terms of the program, saying, “Some stories said that the maximum payment would be $500, when in fact that is the minimum amount we will pay. In fact, we’ve already paid a $5,000 bounty for one really good report. On the other end of the spectrum, we’ve had to deal with bogus reports from people who were just looking for publicity.”

Of the independent security experts involved in the bug bounty program, Sullivan said some had requested Facebook extend it to third-party applications and programs. Sullivan says in response: “Unfortunately, that’s just not practical because of the hundreds of thousands of independent Internet services implicated, but we do care deeply about security on the Platform.” Indeed, considering the amount of third-party software involved, such a bug-spotting scheme would probably bankrupt the social networking site within days.

He continued: ”We have a dedicated Platform Operations team that scrutinizes these partners and we frequently audit their security and privacy practices. Additionally, we have built a number of backend tools that help automatically detect and disable spammy or malicious applications.”

It seems Facebook has come up with a great way to tap into the skills of the security research community to help make the site more secure. Sullivan certainly values the contributions from the independent experts, closing his blog post with the words: “Facebook truly does have the world’s best neighborhood watch program, and [the bug bounty] program has proven that yet again for us.”

Editors' Recommendations

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Graphics terms every PC gamer should know
Kena Bridge of Spirits on the Samsung Odyssey OLED G9.

PC gaming is filled with jargon that mixes together marketable names with scientific descriptions to create a pile of terms that are next to impossible to decipher. Knowing the vocabulary of graphics terms is important for optimizing your performance, understanding your games, and tweaking your graphics menus, and we're here to define all of the labels flying around.

We're focusing on terms that you'll find commonly in games that don't have an obvious definition -- we trust you can figure out what "reflection quality" means -- but there may be some terms we missed. If there's something you're wondering about, click that author name on top of this article and shoot me an email.
Graphics settings

Read more
The best gaming PC Cyber Monday deals on AMD and Intel rigs
Gaming PC on a desk.

Today is the perfect day to start building your new gaming PC because of the bargains that you can get from Cyber Monday deals. To help you out, we've rounded up our favorite deals from two leading (and rivaling) computer parts makers, AMD and Intel, so you can instantly spot your favorites. When you're done shopping, we also recommend you check out the best Cyber Monday gaming laptop deals as a way to start "using up" some of the savings your making on building your desktop at this time of the year.
Best gaming PC Cyber Monday deals (AMD)

While AMD isn't as well-known as Intel regarding processors, it makes just as good, if not better, CPUs. They also tend to be a bit cheaper for the same power, so going with an AMD CPU makes sense if you want to keep your prices down. Luckily, Cyber Monday has further seen a decrease in overall prices, and you can nab very budget-friendly AMD gaming PCs.

Read more
How to save your data from Google’s purge of inactive accounts
The Google "G" logo on an Android phone.

Google is about to begin deleting inactive Google accounts, which could mean you’re about to lose photos, documents, and other data that you actually want to keep.

The good news is that there’s a way you can safely hold onto everything, but you’ll need to take action this week to be sure.

Read more