Google paying big for bug fixes in the new Android Security Rewards program

exploit
For some time now Google has offered cash rewards to researchers and developers who find and fix software vulnerabilities in its various websites and apps. Now that program is expanding even further, offering rewards for fixing issues in the Android operating system.

The new program is called Android Security Rewards, and was announced today at the Black Hat’s Mobile Security Summit in London. Generally, the program aims to address serious security-related issues, rewarding those who uncover vulnerabilities of critical, high, and moderate severity, though Google notes that it will reward certain patches for low-severity vulnerabilities on a case-by-case basis.

As the Android Security Rewards program only concerns the Android Open Source Project (AOSP), the program only covers vulnerabilities found “in the latest available Android versions for Nexus phones and tablets currently available for sale in the Google Store.” Right now this means only the Nexus 6 and Nexus 9 count. Google has indicated that no other products like the Nexus Player, Android Wear, or Project Tango are included in the program.

That’s a fairly small list, but those who find and fix vulnerabilities for either device do stand to make a fairly tidy sum for their time. The rewards start at $500 for simply finding and reporting a moderate-severity vulnerability. Finding and fixing a bug of critical severity, on the other hand, could get you $8,000, assuming the fix is accepted. Rewards for uncovering certain exploits can gain those who find them up to an extra $30,000.

Since Google began offering rewards for bug fixes in 2010 the company has paid out more than $4 million. Last year alone the company paid out $1.4 million to over 200 researchers. Considering Android’s popularity among developers, this number will likely grow significantly with the introduction of the Android Security Rewards program.

If you’re a developer or security expert, or are simply interested in learning more about the program, head over to Google’s Android Security Rewards page for more information.

Emerging Tech

‘Rogue medicine in a bathtub’: 4 experts on the vice and virtue of pharma hacking

A biohacker, pharmahacker, and two bioethicists walk into a bar. We ordered them a metaphorical round and had a chat about the risks and rewards of DIY medicine — from unsanctioned gene therapy to medication made on the kitchen counter.
Smart Home

Alexa can play smart home camera video recaps on Echo, Fire devices

Now you can ask Alexa to show the last recorded video from smart home security cameras on Echo Show, Echo Spot, Fire TV, and Fire Tablets. Video replay is enabled for Ring, August, Arlo, Cloud Cam, and Logitech cameras.
Emerging Tech

Regular Wi-Fi can accurately detect bombs, chemicals, and weapons in bags

Surveillance cameras and bag searches have become commonplace when it comes to security in public venues. But researchers may have found a different way to detect suspicious items: regular Wi-Fi.
Computing

Researchers hack John McAfee’s ‘unhackable’ Bitfi cryptocurrency wallet

Researchers have successfully hacked John McAfee's Bitfi cryptocurrency wallet. Researchers show that the device can be hacked, as they have gained access to the device's private keys and passphrase despite McAfee's security promotion.
Mobile

The best Moto Z3 cases to keep your flagship phone protected

The newly released Motorola Moto Z3 is a fine phone with a lot to offer. But while it's tough, it's not tough enough to go five rounds with concrete. Here are the best Moto Z3 cases to keep it protected.
Mobile

Master your Moto E5 Plus and E5 Play with these handy tips and tricks

The Moto E5 Plus and Moto E5 Play are Motorola's latest budget phone offerings. Whether you're new to Moto phones or just upgrading, there are plenty of special features to explore. Here are our favorite Moto E5 tips and tricks.
Emerging Tech

Awesome Tech You Can’t Buy Yet: inflatable backpacks and robotic submarines

Check out our roundup of the best new crowdfunding projects and product announcements that hit the Web this week. You can't buy this stuff yet, but it sure is fun to gawk!
Mobile

Department of Justice asks judge to force Facebook to decrypt Messenger

The Department of Justice and Facebook are embroiled in a legal dispute over the future of Messenger's privacy policies. The government is demanding it decrypt Messaenger to allow for wiretapping of criminal suspects. Facebook is refusing…
Mobile

SMS Connect will allow you to use Skype to text from your PC

If you're a fan of Skype, then we have some good news for you. Microsoft is working on a new Skype feature called SMS Connect, which will allow you to use Skype to send and receive text messages on your PC, provided you have an Android…
Photography

From white skies to blurry subjects, how to fix common photo mistakes

You snapped the photo at the perfect moment, but the image is blurry. Understanding the most common photography mistakes can help capture better memories and more likable Instagrams. Here's how to fix these seven common photography…
Mobile

Quindim, quiche or quesito? What will Android Q be called?

We always like to wildly speculate about the next dessert-themed name for Android, but the letter Q is making that tougher than usual. Here are our best guesses and suggestions for the full name of Android Q.
Photography

How iPhone photographers connect the world using only ‘basic’ gear

August 19 is World Photography Day, marking progress from the daguerreotype to the iPhone. But how do today's photographers create a connection to viewers using basic gear? We talked to iPhone photographers and influencers around the world…
Wearables

Is this proof Google plans to launch a Pixel Watch soon?

From its Pixel smartphones to Google Home, the Google brand is quickly becoming synonymous with high-quality consumer hardware. This year, it looks like Google may branch out a little further by creating its first smartwatch.
Mobile

Samsung confirms the Galaxy S10 won't be the first 5G phone

It may be no more than a sparkle in Samsung's eye, but the Samsung Galaxy S10 is definitely coming. Here's everything we know about what's sure to be Samsung's most amazing creation so far.