Google Raises Bug Bounties To $20,000

摘要

Google has dramatically raised the bounties it pays independent researchers for reporting bugs in its websites, services and online apps. The search giant boosted the maximum reward from $3,133 to $20,000, and added a $10,000 payment that will be awarded for SQL injection bugs or for what it deems to be "significant" authentication bypass or data leak vulnerabilities. In general, though, the Vulnerability Reward Program (VRP) will now pay $20,000 for flaws that allow remote code execution against Google.com, YouTube.com and other core domains, as well as what the company called "highly sensitive services," including its search site.