Make Some Money by Reporting Facebook Security Holes
Article by George Norman
On 05 Aug 2011
Popular social networking site Facebook, which according to the latest statistics has more than 750 million registered users, has decided to follow in the footsteps of Google and Mozilla and introduce a bug bounty program. This means that Facebook is giving security researchers the chance to earn some money. And when I say “some money” I mean at least $500.

Facebook explained that as part of its bug bounty program it will pay hackers upwards of $500 if they find security holes and report them to its security team – vulnerabilities that could compromise either the integrity or privacy of Facebook user data, like cross-site scripting (XSS), cross-site request forgery (CSRF) or remote code injection. The aforementioned amount of $500 is the base rate it will pay for security holes, clarified Facebook. A lot more money will be paid for “truly significant” security holes – just that Facebook did not say precisely how much.

Sponsored Links

“In the past we’ve focused on name recognition by putting their name up on our page, sending schwag out and using this an avenue for interviews and the recruiting process,” said Alex Rice, Facebook’s product security lead. “We’re extending that now to start paying out monetary rewards.”

If you have a security hole and you would like to make some money by reporting it to Facebook, you need only visit this webpage. Click the link and you will be directed to Facebook page that asks a simple question: “Are you a security researcher?” Answer “No” and you will be directed to a generic quiz on security. Answer “yes” and you will be able to submit your security hole.

Please note that you will get the money only if you follow Facebook’s Responsible Disclosure Policy which states, among other things, that Facebook must be given reasonable time to respond before details of the vulnerability are released to the public.

Additional information on Facebook’s bug bounty program is available here.




Tags: Facebook, Security, Money
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 30 Jun 2016
Update #1, the first post-launch update for Doom, ads an extra helping of old-school goodness. The update introduces a new weapon placement view option, meaning that the...
By George Norman on 30 Jun 2016
You’re familiar with some Google voice commands, perhaps the most useful ones, but are you familiar with all of them? Here’s an (almost) complete list of every action you can perform with your voice.
Related News
By George Norman on 04 Feb 2016
Facebook just turned 12. On this joyous occasion, here's a dozen interesting and amazing facts about the biggest and most popular social network in the world.
By George Norman on 07 Apr 2016
The web is abuzz with news about WhatsApp and how it added end-to-end encryption. If you don’t know what that means, then let me address any questions you may have about this topic.
By George Norman on 11 Feb 2016
Security company BullGuard presents the main reasons why someone might be tempted to hack a Facebook account, offers safety tips on how to keep your account secure, and invites you to get a...
By George Norman on 18 Jan 2016
WhatsApp just announced that it is dropping the annual subscription free, making the messaging app free for everyone. Wait, does that mean the app will start to pester you with ads?
Sponsored Links
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
Make Some Money by Reporting Facebook Security Holes
HTML Linking Code