Skip to main content

Finding bugs in Firefox is now much more profitable

mozilla developing kitchen bot firefox donations
Image used with permission by copyright holder
Five years ago, Mozilla increased the payout for its Bug Bounty Program to $3,000 for anyone who found bugs that were rated high or critical. While this was a solid payout, Mozilla has decided to make some adjustments, now setting $3,000 as the minimum for any high or critical bug, with amounts going up substantially from there.

Along with payouts for major bugs and vulnerabilities, Mozilla will now start paying out for bugs it calls Moderate or medium. Before, these would not have qualified for the $3,000 payout, and would instead have received nothing. Now, Mozilla is adding a sliding scale where these medium bugs would get a payout somewhere between $500 to $2,500, depending on the severity of the bug in question.

Recommended Videos

On the high to critical side, $3,000 is now the minimum. A high-quality report of a high or critical bug will net the finder $5,000, and a clearly exploitable high or critical bug will get the person who discovers it $7,500. On the top end, bugs that Mozilla describes as a “novel vulnerability and exploit, a new form of exploitation or an exceptional vulnerability” will pay out $10,000 or more to the person who finds it.

Bugs in the highest range are going to be quite rare, and Mozilla will ultimately have the final discretion on whether a bug qualifies for the largest payout. The biggest change for the most people is probably going to come from the bugs on the low end, as these are more likely to be found by the average bug seeker.

Since the inception of this program, Mozilla claims to have already paid out over $1.6 million, and with these increased payouts at the high and low end of the spectrum, that amount is clearly going to increase substantially.

Dave LeClair
Former Digital Trends Contributor
Dave LeClair has been writing about tech and gaming since 2007. He's covered events, hosted podcasts, created videos, and…
Firefox Focus unveils ‘total cookie protection’ for Android
A symbol of the Mozilla Firefox logo.

One of the downsides of the modern world is the widespread, unwanted tracking and data storage of users by websites. This tracking is done by what we call cookies, but there are ways to block them, including by using browsers that prevent automatic tracking such as the mobile-based Firefox Focus. Now, Firefox has launched Total Cookie Protection to prevent cross-site tracking.

To elaborate, Total Cooke Protection creates a "cookie jar" for each website that a user visits. Each time a website inserts a cookie in one's browser, Firefox Focus restricts that cookie to a separate cookie jar assigned specifically for that same website. This prevents other websites from having their cookies follow your activities everywhere. With the jars, they're now limited in the amount of information they can glean about you.  This is the first Firefox mobile browser to offer such a key feature, and it's likely to please privacy advocates.

Read more
Mozilla’s Firefox browser for Android and iOS gets a revamped homepage
A symbol of the Mozilla Firefox logo.

In May, Mozilla rolled out a fresh new interface to the Firefox browser based on some highly data-driven learnings. Now, the Firefox browser's mobile version is getting an improved homepage with several new features based on users' feedback to help make browsing more thorough and efficient.

The new homepage on Firefox for Android and iOS brings dedicated sections to improve how users browse on their smartphones. For example, "Jump back in," lets you quickly open the last active tab that you were browsing. Besides the most recent tabs, Firefox also shows the most recent bookmarks, so you can dive back into the pool of information without making a lot of effort to find the tab that was previously opened or saved.

Read more
Download AMD’s new driver now to fix a major Windows 11 bug
AMD Ryzen 5000 with no lid.

A day after Windows 11 launched, AMD posted a notice about two severe bugs that could tank performance as much as 15%. The two issues are resolved now. One fix comes from AMD, while you can obtain the other through Windows Update.

The AMD update is focused on UEFI CPPC2, or in practical terms, AMD's preferred core feature. The Windows 11 bug wouldn't put the most demanding work on the fastest core, leading to decreased performance overall. You can download the chipset driver update now (revision 3.10.08.506) from AMD's website. As a reminder, this update is relevant to all AMD processors that work with Windows 11.

Read more