Skip to main content

Google dished out $6.5M in bug bounties in 2019 with one payout worth $201K

Google has revealed that it paid out a total of $6.5 million in 2019 to people who found critical flaws in its software.

The cash payments are part of Google’s bug bounty program, which, since its launch in 2010, has handed out a total of $21 million.

All of the major tech companies operate similar bug bounty programs in an effort to keep their software safe and secure. The programs invite so-called “ethical hackers,” also known as white-hat hackers, to examine software code in search of vulnerabilities that a more malicious hacker might exploit, with potentially damaging consequences for the company involved. That’s why the likes of Google, Apple, and Microsoft are prepared to pay big money for the discovery of serious software flaws.

In 2019, Google’s single biggest payment was a cool $201,000, though the company declined to offer any details about the nature of the vulnerability.

In all, 461 researchers received bug bounty payments from Google in 2019. The company said last year’s total payout of $6.5 million doubled its previous highest annual payout, adding that those who received the rewards donated a total of $500,000 to charity — five times more than any previous year when the bounty program has been running.

Part of the reason the numbers are rising is that Google has been gradually expanding the scope of its program to cover additional products, including Chrome, Android, and popular third-party apps on Google Play. It’s also added abuse-related weaknesses where someone finds a way to manipulate, say, the rating scores of listings on tools such as Google Maps. It’s also upped the baseline reward amounts, leading to higher payouts for researchers who report critical vulnerabilities.

There’s certainly some serious money to be made for those with the skills to track down the bugs. Toward the end of last year, for example, Google announced it was increasing its top payout to a staggering $1 million for the discovery of a specific Android vulnerability. It even includes the possibility of a 50% bonus that would push the payout to $1.5 million.

In 2018, California-based Google revealed how an 18-year-old researcher collected $36,000 from its bug bounty program after discovering a vulnerability that could have allowed a hacker to make changes to the company’s internal computer systems.

Editors' Recommendations

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Life with the Pixel 5, OnePlus 8T, and Galaxy S20 FE: Which is worth your $700?
pixel 5 oneplus 8t galaxy s20 fe shootout buying guide and cameras

Not that long ago, your choice of smartphones to buy for about $700 was modest, and not especially exciting. Throughout 2020, the range at this price has expanded, to the point where it’s hard to make a decision because there are so many tempting options. At the top of any list should be the $699 Google Pixel 5, the $699 Samsung Galaxy S20 FE, and the $749 OnePlus 8T.

You can decide based on specifications alone, of course, and compare this feature and all that, but I’ve been swapping between all three for the last few weeks, and I’m going to tell you which one I’ve settled on at the end of it all. It’s not a decision based on specs -- it’s about the nuances of living with each one, the designs, the things that work, and the things that don’t.
Daily use
Let’s talk about the Galaxy S20 FE. It’s the only one here with a plastic rear panel — or to use Samsung’s word, “glasstic,” because it’s supposed to feel like glass. It’s acceptable on its own, but against the OnePlus 8T and the Pixel 5, it’s not good enough. It doesn’t come close to the cool-to-the-touch, deliciously high quality matte finish of the OnePlus 8T, which you’d swear belonged to a phone that costs much more than it does.

Read more
OnePlus 8T vs. Google Pixel 5: Which new phone comes out on top?
OnePlus 8T

2020 is almost drawing to a close, but the smartphone industry still hasn't run out of eye-catching flagships to launch. October saw the release of (among others) the Google Pixel 5 and the OnePlus 8T, both of which offer a range of enticing features at a reasonable price level. The Pixel 5 continues Google's fine tradition of delivering competition-beating cameras, while the OnePlus 8T is a strong all-rounder that lets you recharge its battery faster than you can make a hot meal. They're both lovely phones, but we need to know: Which one is better?

We answer this question by comparing the Pixel 5 and OnePlus 8T in a direct head-to-head. We look at their specs, designs, displays, performance, cameras, software, and special features, while counting which one wins in most categories. This should help you decide which Android flagship is more to your taste.

Read more
Google Pixel 5 vs. OnePlus 8: Can the flagship killer strike again?
Someone holding a Google Pixel 5. The screen is on and shows the Home Screen with an app folder open.

The Google Pixel 5 is the best Pixel Google has released to date. Featuring the same excellent 12.2-megapixel camera as the Pixel 4, it adds a 16MP ultrawide lens, a significantly larger battery, 5G support, and an improved display. It looks set to be one of the best Android smartphones you can buy and one of the best phones costing $700 or less.

But it's not the only sub-$700 Android. Another strong contender in this category is the OnePlus 8. Released in April, it also features great software, a long-lasting battery, an appealing design, and a very usable camera. It's a good phone in its own right, but is it better than the Pixel 5?

Read more