Facebook teams with Microsoft to offer cash for bugs

Microsoft and Facebook want to find security problems with some of the key technologies that power the web. The pair have teamed up to create an internet bug bounty project, dubbed HackerOne, that rewards security researchers for finding issues with PHP, OpenSSL, Apache, and even the underlying internet communication protocols. Rewards range from minimums of $ 300 to $ 5,000 depending on the specific vulnerability and the associated severity. Volunteers from Facebook, Microsoft, and even Google will form a panel to judge the entries, and there’s a list of disclosure rules to ensure bugs are reported and disclosed correctly.

While Microsoft, Facebook, and Google all compete online, the collaboration is designed to target high profile…

Continue reading…

The Verge – All Posts

Leave a Comment