What vulnerabilities do Google services have and how much in 2023 company paid specialists who discovered them?
In 2023, Google paid out $10 million through its global bug bounty program to researchers and white hat hackers for identifying vulnerabilities in its services and projects including Chrome, Android, Google Play, Google products, and the company's open-source software. This is $2 million less than in 2022.
Experts believe that although this amount is lower than Google's vulnerability rewards in 2022, it is still significant, demonstrating the company's high level of interest in engaging the cybersecurity community in Google's security efforts. For comparison, in 2023, Yandex paid researchers $770 thousand under its "Bug Hunt" bounty program.
The highest reward for vulnerability reports in Google services in 2023 was $113,337. Payments were received by 632 white hat hackers from 68 countries worldwide.
The total amount paid by Google since the launch of its bug bounty program in 2010 reached $59 million in rewards for security researchers from 84 different countries for reporting more than 15,000 vulnerabilities.
Google paid out over $3.4 million for vulnerabilities found in Android in 2023. Another major Google project, the Chrome browser, was also under scrutiny. White hat hackers submitted 359 security bug reports for which Google paid a total of $2.1 million in 2023. Other significant payouts by the company related to vulnerability reports in cloud AI products such as Google Cloud and the Google Gemini chatbot (Bard).
Additionally, in 2023, Google continued its Mobile VRP program to identify vulnerabilities in third-party Android apps. The company provided access to the online platform Bughunters blog where white hat hackers can exchange ideas and security measures on the internet. Apart from bug bounty programs, Google held several cybersecurity conferences in 2023, featuring various online and offline technical hacking events, meetings, seminars, and hackathons.
In addition, in the previous year, Google allocated over $200 thousand in security research grants and also accepted reports through the Android Chipset Security Reward Program (ACSRP), which is available by invitation only. This is a private Google reward program working in partnership with Android chipset developers.
- Related News
- Which smartphones will be the first to receive Android 15?
- Android smartphone users can now send emojis during phone calls
- Compact, great cameras and low price: What do we know about the Google Pixel 8a?
- Alphabet will pay dividends for the first time in its history
- Google's Gemini app is already available for older versions of Android
- Google is developing a budget smartwatch
- Most read
month
week
day
- Xiaomi unveils exclusive Redmi Note 13 Pro+ dedicated to Messi and Argentina national team 1010
- Internet 500 times faster than 5G tested in Japan: It allows to transfer five movies in HD resolution in one second 852
- What will happen to the Earth if the Moon disappears? 756
- Which smartphones will be the first to receive Android 15? 755
- iPhone 16 may get colored matte glass back panel, 7 colors 724
- Great value for money: 3 best Realme smartphones 722
- WhatsApp receives two new features 684
- Why it is recommended to download applications on trusted platforms: In 2023, Google rejected publication of more than 2 million dangerous applications on Google Play 659
- Instagram is changing its approach to content recommendations: How will the application help promote original content and fight reposters? 621
- How to realize that your smartphone is hacked and you are being surveilled? 578
- Archive