Skip to main content

Microsoft and Google paying more than ever for bugs found in their systems

If you’re a coder or other highly technical sort who can dig into a system and find bugs, then you can turn that skill into some cash. Developers big and small, including major players like Google and Microsoft, have programs that will pay you real money for discovering flaws and vulnerabilities in their systems.

Both Google and Microsoft recently decided to up ante in their bounty programs, jacking up the amount they pay people for finding bugs. Google made the first increase, and then Microsoft literally doubled down on its own program, as FossBeta reports.

Recommended Videos

Google increased its largest award level to $31,337 for anyone identifying a remote code execution vulnerability. That’s a more than 50 percent increase from the previous cap of $20,000. Unrestricted file system or database access bugs can bring the successful bounty hunter between $10,000 and $13,337.

Google Application Security Blog
Google Application Security Blog

Google’s bounty program pays out for vulnerabilities discovered in various Google properties such as Google Search, the Chrome web store, Google play, and more. Some of the specific bugs that Google is looking for are command injections, deserialization flaws, and sandbox escapes.

Microsoft is looking for cross site-scripting, cross-site request forgery, and a variety of other flaws in its systems. The company has recently suffered some zero-day bugs identified and publicized by the Google Zero program before it could fix them, which might be part of the reason why Microsoft doubled its bug bounty from $15,000 to $30,000.

Security is big business, as is cybercrime. Hackers can make tons of money exploiting systems and then selling the private information they’re able to steal, and bug bounty programs like Google’s and Microsoft’s help even the playing field.

Mark Coppock
Mark Coppock is a Freelance Writer at Digital Trends covering primarily laptop and other computing technologies. He has…
Google’s answer to Microsoft Copilot is finally here
Generative AI in Google Search.

Google is adding to its AI repertoire with a new plug-in that will serve corporate teams for the not-so-low price of $30 per month. It's called Google Duet, and it allows you to translate your documents into various different Google apps with a click.

The Google Duet assistant is now available after being showcased at the Google I/O developer conference in May. The assistant is compatible with Google's Workspace apps, including Gmail, Drive, Slides, Docs, and others.

Read more
Google Calendar just fixed one of its most irritating bugs
Google Calendar shown on a computer monitor.

If you like to combine Google Calendar with your Microsoft Outlook account, we’ve got some good news: Google has finally fixed an issue that has been plaguing the two services for way too long.

Previously, if you were to organize a meeting in Outlook, you would frequently find that your name was missing from the list of attendees in Google Calendar. This would obviously be confusing for other users, as it would seem that you weren’t planning on showing up to a meeting you were known to be organizing.

Read more
Google just made this vital Gmail security tool completely free
The top corner of Gmail on a laptop screen.

Hackers are constantly trying to break into large websites to steal user databases, and it’s not entirely unlikely that your own login details have been leaked at some point in the past. In cases like that, upgrading your password is vital, but how can you do that if you don’t even know your data has been hacked?

Well, Google thinks it has the answer because it has just announced that it will roll out dark web monitoring reports to every Gmail user in the U.S. This handy feature was previously limited to paid Google One subscribers, but the company revealed at its Google I/O event that it will now be available to everyone, free of charge.

Read more