Tech giant Google paid almost $3 million (roughly Rs. 19 crores) to security researchers in 2017 as rewards for the vulnerabilities they Discovered in its products and services.
Approximately $1.1 million (approximately Rs. 7 crores) each was paid for bug reports specific to Google and Android products while Chrome awards accounted for the rest of the Vulnerability Bonus Program.
“We given researchers over $1 million to get vulnerabilities they reported and found in Google products, and a comparable amount for Android as well. Combined with Chrome awards, we given nearly $3 million to researchers for their accounts,” Jan Keller, a member of Google’s Vulnerability Reward Program (VRP) composed in a blog post.
“We awarded $125,000 to over 50 security researchers from all around the globe during our Vulnerability Research Grants Program and $50,000 to the hard-working folks who enhance the safety of open-source software as part of our Patch Gains Program,” Keller added.
The biggest single payment of $112,500 (roughly Rs. 72.4 lakhs) moved to independent researcher Guang Gong for outlining an entry chain on Pixel phones as part of the Android Security Rewards Program.
The Pixel was the only device which wasn’t exploited during the past year’s annual “Mobile Pwn2Own” contest and Guang’s report helped strengthen its protections farther.