Menu
Google partners with HackerOne for Android app flaw bug bounty

Google partners with HackerOne for Android app flaw bug bounty

Each flaw will score at least US$1,000 under the program

Google is offering security experts a bounty to identify Android app flaws as the Alphabet business unit seeks to wipe out bugs from its Google Play store.

Each flaw will score at least US$1,000 under the program announced on Thursday to back up automated checks that have failed to block malware and other problems that security experts say infect the eight-year-old app store far more than Apple's rival App Store.

Google will partner with HackerOne, a bug bounty program management website, to target a list of apps and flaws such as those that allow a hacker to redirect a user to a phishing website or infect a gadget with a virus.

Software scans cannot match a person's ability to discover "a truly creative hack," Vineet Buch, director of product management for Google Play Apps and Games, said in an interview.

The Google Play Security Reward Program effectively sponsors research into software created by other companies. Bug bounties by Microsoft Corp, Apple and Alphabet have been awarded only for tracing flaws in their own software.

"We don't just care about our own apps, but rather the overall health of the ecosystem," Buch said. "It's like offering a reward for a missing person even if you don't know who the missing person is personally."

Google did not reveal the funding for its program, but said it would start small.

Google's bug bounty program for its Android mobile operating system, launched in June 2015, doled out US$1.5 million for hundreds of vulnerability reports over its first two years.

(Reporting by Paresh Dave; Editing by Richard Chang)


Follow Us

Join the newsletter!

Or
Error: Please check your email address.

Tags securityGoogleAppleAndroidbugappflaw

Featured

Slideshows

Ingram Micro launches Showcase 2018 in Christchurch

Ingram Micro launches Showcase 2018 in Christchurch

Ingram Micro kickstarted Showcase 2018 in Christchurch, hosting more than 40 vendors at Horncastle Arena. Under the banner of Leading the Way, the event demonstrated what’s new, what’s next and how it can be used to improve business and everyday life.

Ingram Micro launches Showcase 2018 in Christchurch
Data breach notification laws in NZ: How can partners prepare?

Data breach notification laws in NZ: How can partners prepare?

This exclusive Reseller News Roundtable outlined the responsibilities facing security partners today, assessing risk while evaluating the role of the vendor in providing added layers of protection.

Data breach notification laws in NZ: How can partners prepare?
Show Comments