Skip to main content

Google awards teenager $36,000 as part of its bug bounty program

Google has awarded a Uruguayan teenager for reporting a vulnerability that would have allowed hackers to make changes to the company’s internal systems. This marks the fifth bug that Ezequiel Pereira has submitted to Google’s bug bounty program. It’s also the most valuable, earning him more than $36,000.

Pereira began got his first computer at age 10 and has been programming since he took an intro class at age 11. He has spent years teaching himself various programming languages and participated in several coding contests, including one that earned him a trip to Google’s headquarters in California.

His drive for bug hunting began when he was younger. He said that he quickly found a bug that earned him $500 and had been hooked ever since.

“I found something almost immediately that was worth $500 and it just felt so amazing,” he told CNBC. “So I decided to just keep trying ever since then.”

Pereira found the bug earlier this year and reported it to Google. He only recently received permission to discuss the bug and how he found it once Google confirmed that it had resolved the issue.

In June of last year, Pereira discovered a bug that earned him $10,000 and used part of that money to apply for scholarships to U.S. universities. None of the schools he reached out to accepted him, so he is currently studying computer engineering in his hometown of Montevideo. He is hopeful that he’ll be able to use his earnings to fund his education, as he hopes to one day earn a master’s degree in computer security. Apart from his education, he has no major plans for his earnings aside from helping his mother pay the bills.

As of right now, Pereira has only submitted bugs to Google’s bug bounty program, but many tech and video game companies offer similar rewards for discovering and reporting bugs. The companies are hopeful that offering monetary rewards will encourage hackers to report exploits rather than sell them to bad actors.

For his part, Pereira has encouraged his friends and others to get involved with bug hunting. When his friends say they don’t think they have the proper knowledge, Pereira replies that “anyone can learn these things.”

Editors' Recommendations

Eric Brackett
Former Digital Trends Contributor
Earn up to $10,000 by squashing printer-based bugs in HP’s bounty program
HP LaserJet Pro M426fdw Multifunction Wireless Laser Printer laser printer deals

HP is calling an “industry first” by launching a print security bug bounty program providing rewards up to $10,000. It’s backed by Bugcrowd, a crowdsourced security platform that manages bug bounties, vulnerability disclosures, and more. The program will focus on bugs related to printers, which can be an entry point for hackers.

“As we navigate an increasingly complex world of cyber threats, it’s paramount that industry leaders leverage every resource possible to deliver trusted, resilient security from the firmware up,” Shivaun Albright, HP's Chief Technologist of Print Security, said in a statement. “HP is committed to engineering the most secure printers in the world.”

Read more
Google will give you $1,000 to hack Android’s most popular apps
sony hackers still unidentified hunt seems mission impossible hacking

Need some extra cash? Then good news! Google is offering $1,000 to people who can hack popular Android apps. In a partnership with HackerOne and several popular Android developers, Google has launched the Google Play Security Program. The tech giant has offered similar bounty programs before, but this is the first time that it has partnered with individual developers. Currently, 13 of the most popular app developers are part of the program. The program includes Tinder, Duolingo, DropBox, Snapchat, Head Space, MyMail, and several others.

The rules for the program are fairly simple. Once you discover a bug or vulnerability in one of the participating apps, you simply report it to the developers and work with them to fix the issue. Once the issue has been resolved, the app developers will pay you, and then Google will chip in a $1,000 bonus on top of whatever you were already paid.

Read more
DJI offers hackers up to $30,000 to help find bugs in its drones
DJI Spark best drones under $500

DJI, the popular Chinese drone manufacturer, is asking hackers to help make its devices more secure. The company announced the DJI Threat Identification Reward in a blog post on Monday and outlined the rewards, which range from $100 to $30,000 for uncovering vulnerabilities, depending on how big of a threat the hacker helps avert.

“Security researchers, academic scholars and independent experts often provide a valuable service by analyzing the code in DJI’s apps and other software products and bringing concerns to public attention,” Walter Stockwell, DJI's director of technical standards, said in a statement. “DJI wants to learn from their experiences as we constantly strive to improve our products, and we are willing to pay rewards for the discoveries they make.”

Read more