Hackers, it is your time to shine.
Google, in collaboration with bug bounty platform HackerOne, has launched the Google Play Safety Reward Program, which guarantees $1,000 to anybody who can determine safety vulnerabilities in collaborating Google Play apps.
13 apps are at the moment collaborating, together with Tinder, Duolingo, Dropbox, Snapchat, and Headspace.
Apps often run their very own bounty applications on a smaller scale. That is the primary time that Google itself has provided a reward on behalf of builders.
This is the way it works. In case you discover a safety vulnerability in one of many collaborating apps, you may report that vulnerability to the developer, and work with them to repair it. When the issue has been resolved, the Android Safety group can pay you $1,000 as a reward, on high of any reward you get from the app developer.
Google will probably be gathering information on the vulnerabilities and sharing it (anonymized) with different builders who could also be uncovered to the identical issues.
For HackerOne, it is about attracting extra and higher contributors in bounty applications. A developer who uncovers a vulnerability in Tinder will now obtain a the money bonus from Google along with the cash they obtain from Tinder’s program.
“Taking part apps that have already got a bug bounty program will now have the chance to draw an much more numerous set of hackers,” Adam Bacchus, HackerOne’s chief bounty officer, instructed Mashable.
The 13 apps at the moment collaborating have been chosen based mostly on their reputation amongst Android customers. After a trial interval with the small group, Google will open this system to the bigger neighborhood.