Many companies run bug bounty programs to incentive ethical hackers to try and find vulnerabilities in their products. This allows the companies a chance to find out about those vulnerabilities and patch them before they’re used by hackers. Security researchers and ethical hackers also stand to receive payouts for their disclosures. Huawei has now launched a Vulnerability Reward Program which will provide payouts of over $140,000 for serious disclosures.
Huawei has launched this program in partnership with 360 Mobile Security. It’s offering a maximum payout of 1 million RMB or over $140,000, depending on the disclosure’s severity. It was announced during the 2018 Huawei terminal security award program conference.
The program is open to all invited security researchers. 360 Mobile Security C0RE team’s head Zhou Mingjian pointed out that for almost 90 percent of all vulnerabilities found in Android devices, vendor drivers are to blame.
He also pointed out that the 360 CORE team has discovered 138 vulnerabilities in the Android Os over the past two years, accounting for 12 percent of all disclosures in that period of time. Huawei aims to encourage more ethical hackers to devote their time to finding vulnerabilities in its products. It’s not opening up the program to any and all ethical hackers out there just yet, but there’s nothing stopping it from doing just that at some point in the future.
Filed in Huawei. Source: chinaknowledge
. Read more about