Skip to main content

Google is paying up to 50 percent more to hackers who find Android bugs

google android one u s stock phone smartphone
Image used with permission by copyright holder
Google is taking Android security very seriously. Since the company launched the Android Security Rewards program last year, it has reportedly paid a hefty $550,000 to 82 people for discovering various bugs in Android.

It seems, however, as though Google wants to take things to the next level. The company will be offering between 33 percent and 50 percent more money than previously for reports of Android bugs filed after June 1, 2016. Researchers who show a proof of concept and a proposed patch will get 50 percent more, while others will get 33 percent more than previous payouts.

According to a blog post on the Google security blog, the top-paid researcher was paid a whopping $75,750 for 26 vulnerability reports, and 15 researchers were paid $10,000 or more.

“Together, we made a huge investment in security research that has made Android stronger. We’re just getting started and are looking forward to doing even more in the future,” said Google in its blog post.

Of course, Google isn’t only concerned with Android. If a developer or hacker finds a bug that isn’t part of the Android operating system, Google is still encouraging them to report it, as that will help improve the security of the wider mobile industry. Not only that, but Google also has rewards programs in place for Chrome, its web browser, and for other services that it operates. So far it has given away more than a million dollars in rewards.

Rewards programs are great not just for hackers, but also for consumers. These programs encourage hackers to report their findings instead of exploiting them for their own gain. For this reason, a number of large tech companies have implemented rewards programs of their own. Companies that have done so include the likes of Microsoft, Oculus, and PayPal.

Of course, Google isn’t the only one taking mobile security seriously — Apple just announced that it will be mandating the use of HTTPS encryption for apps in the App Store by January 1, 2017.

Editors' Recommendations

Christian de Looper
Christian’s interest in technology began as a child in Australia, when he stumbled upon a computer at a garage sale that he…
Google’s Android bug bounty program announces a $1 million prize
pixel 4 xl screen vs pixel 3 xl screen

Google has been handing out cash rewards to Android bug hunters since 2015 in an effort to keep the mobile operating system safe and secure and running smoothly.

This week the Mountain View, California-based company announced it is increasing its top payout to a whopping $1 million, with a potential for a 50% bonus that pushes it to $1.5 million.

Read more
Android 10 update seemingly breaks Wi-Fi on the Google Pixel 2
Google Pixel 2 XL back

The launch of Apple's iOS 13 may have been a pretty buggy release, but it looks like the launch of Android 10 wasn't perfect either. According to new reports, Android 10 is breaking the Google Pixel 2's ability to connect to Wi-Fi.

A Google support thread notes that hundreds of Pixel 2 users are experiencing Wi-Fi issues after having updated to Android 10 -- and the only way to resolve the issue seems to be factory resetting it. Some users claim that their device connects to a Wi-Fi network but can't actually access the internet, while others suggest that Wi-Fi connections seemingly randomly drop. Interestingly, it seems like there is a range of Wi-Fi issues on the Pixel 2 after updating, instead of one issue that affects everyone.

Read more
Android bug allowed hackers to access phone cameras in the background
pixel 4 xl accented button

Facebook may be the least trusted company when it comes to online privacy, but it seems like Google is vying for the top spot. The company disclosed a new Android vulnerability that essentially allowed hackers to gain access to a smartphone's camera. That's even when the phone is locked.

The bug was actually discovered by Checkmarx and allowed hackers to bypass app permissions. Pixel phones were specifically affected, but it seems like the issue also affects phones from Samsung and other manufacturers too.

Read more