Google Will Pay You $1000 Bounty For Finding Bugs In Android Apps by Abhijit Katore


Google Will Pay You $1000 Bounty For Finding Bugs In Android Apps

Google Will Pay You $1000 Bounty For Finding Bugs In Android Apps

Google has launched (and is expanding) a new program with the aim of removing vulnerabilities from third-party apps on its Google Play Store. Titled the Google Play Security Reward Program, it will reward researchers $1,000 for discovering problems in Androidapps and reporting them to Google.

“Through the programme, we will further improve app security which will benefit developers, Android users and the entire Google Play ecosystem,” said the search giant.

Google has maintained such bugbounty programs for a number of their platforms such as Chrome and Chrome OS among others. This program’s scope fornow is restricted to RCE (remote-code-execution) vulnerabilities and corresponding POCs (Proof of concepts) that work on Android 4.4 devices and higher.

“This translates to any RCE vulnerability that allows an attacker to run code of their choosing on a user’s device without user knowledge or permission,” Google said.

How it Works?

Within the bug bounty program, a researcher needs to find a vulnerability among the apps covered. Once found, they will have to report it to the app developer via their current reporting process. The app developer will then work with theresearcher to resolve the vulnerabilities found within 90 days. The researcher can then claim the bounty from Google which will evaluate if it meets the program’s criteria before handing over the $1,000 reward.

“The programme will evaluate each submission based on the vulnerability criteria. A reward of$1,000 will be rewarded for issues that meet this criteria,” Google said. “We are unable to issue rewards to individuals whoare on US sanctions lists or who are in countries (Crimea, Cuba, Iran, North Korea, Sudan and Syria),” it added.

For this program, Google is working alongsideHackerOne– a vulnerability coordination and bug bounty platform . Developers can participate in theprogram only if they’re willing to respond to and help fix the vulnerabilities found in a timely manner. They will also need to follow HackerOne’s disclosure guidelines and provide reports with the required details. The apps currently in the scope of the program include Alibaba, Dropbox, Duolingo, Headspace, Line, Mail.ru, Snapchat, and Tinder with more to be added astime goes on.

The Google Play Security Reward Programme recognises the contributions of security researchers who invest their time and effort in helping us make apps on Google Play moresecure,” said the firm.

Owners Info

IMG-20190828-215658-763
/html>

Comments

Post a Comment

We Will Reply Soon...Stay Connected

Popular posts from this blog

How to Install CWN Recovery to Lava iris X1 by Abhijit Katore

Image
How to Install CWN Recovery to Lava iris X1 ? How to install CWN Recovery to Lava iris X1 ? 1.Root your mobile. (If you don't know how to root then Click Here ) 2.Download CWN Recovery. 3.Download Flashify app from play store. 4.Give the app ROOT permission. 5.Backup your current recovery & boot.img through Flashify.(*important*) 6.Now go to flash option & select recovery there.The window will pop-up asking tochoose a file or Download custom recoveries. 7.Select choose a file.browse and select your downloaded img. 8.Then select file way. 9.Now app will ask you whether to flash file or not. click yup! There. 10.Taaaadaaa....reboot your phone to recovery by pressing power button+volume down (powerbutton first when mobile will vibrate immediately press volume down) 11.Now you successfully flashed CWN Recoverg on Lava iris X1
Read more

Android Go Patch For Low Ram Devices By Abhijit Katore

Image
Android Go Patch Patch For Low Ram Devices by Abhijeet Katore Android Go Patch for Low Ram Devices by Abhijeet Katore As Android Started their new project i.e. Android Go which contains all google apps with their go versions which require low ram and low system Performance In Android Go Google used their apps with low defination and low system requirnment How to Install Android Go Patch Requirnments→ Rooted Android Device Android Device with any custom Recoveries(TWRP,CWN,PhilZ) Some Knowledge About Recovery Dont Have Custom Recovery ? For Spredtrum Devices Click here For Mediatek Devices Click here Download Low Ram Enabler Patch Download Low Ram Disabler Patch
Read more

[MT6571] philZ Recovery for intex aqua 4.5E by Abhijit Katore

Image
philZ Recovery for intex Aqua 4.5E [MT6571] philZ Recovery for intex Aqua 4.5E [MT6571] We Also this Recovery for Porting to other MT6571 Devices. Flashing Procedure 1. Download philZ Recovery for Intex Aqua 4.5E. 2.Root your Intex Aqua 4.5E. (If Don't know how to Root then Google it.) 3.Download and Open Flashify App from play store. 4.Allow Root Permission to Flashify. 5.Go to backup Tab And select Recovery backup. 6.After Backup go to Flash Tab and click on Recovery and click on choose a file and select Downloaded recovery and click Yup. 7.Click Reboot Recovery And See philZ Recovery. Owners Info
Read more