Mozilla Security Bug Bounty Program Now Offers More Money
Article by George Norman
On 19 Jul 2010
For quite some time now the folks over at Mozilla have the Mozilla Security Bug Bounty Program in place, a program that rewards those who report valid critical security bugs with cash money and a Mozilla T-shirt. Come to think of it, the program has been around for 6 years now – it launched back in 2004. During all this long time the amount of money Mozilla paid out was of $500 (US). The problem with that $500 cash reward was that it was not that enticing.

It’s the same discussion as when Google announced that in an effort to deter irresponsible vulnerability disclosure, it is willing to pay between $500 and $1337 for “interesting and original vulnerabilities” reported by the security research community. The topic back then was that $500 is not enough to entice some security experts – and definitely not enough to entice blackhat hackers who could get much more than $500 for a 0-day exploit on the black market.

Advertising

So the point is that $500 for a vulnerability, especially a serious one, is not exactly a big amount. The Mozilla Foundation realized this and upped the amount it pays out – Mozilla upped the amount from $500 to $3,000 (that’s a 600% increase).

“For new bugs reported starting July 1st, 2010 UTC we are changing the bounty payment to $3,000 US per eligible security bug. A lot has changed in the 6 years since the Mozilla program was announced, and we believe that one of the best way to keep our users safe is to make it economically sustainable for security researchers to do the right thing when disclosing information,” announced Director of Security Engineering, Lucas Adamski. “We hope other organizations will match our program and actively support constructive security research.”

Details on the Mozilla Security Bug Bounty Program are available here.




Tags: Mozilla, Security, Mozilla Security Bug Bounty Program
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 17 Aug 2017
With the blockbuster movie season upon us, Sony decided to celebrate the occasion with a sale: the Attack of the Blockbusters Sale that offers discounts of up to 50% (60% if you’re a PlayStation Plus member) on a ton of PS4 video games.
By George Norman on 17 Aug 2017
Samsung’s new T5 portable solid-state drive (PSSD) uses the latest 64-layer V-NAND technology, offers between 250GB and 2TB of storage capacity, has a lightweight and shock-resistant design that’s smaller than the average business card, and delivers industry-leading transfer speeds of up to 540 MB/s.
Related News
By George Norman on 24 Jul 2017
As someone who has been using Firefox day-to-day for a very – VERY – long time, I’ve grown to know a lot about Mozilla’s web browser. As such, I thought it a good idea to share part of my knowledge with you and highlight 10 tips & tricks that I’m sure you’ll find very useful.
By George Norman on 14 Aug 2017
Firefox Send works with any modern web browser (not just Mozilla’s own), it lets you safely send files up to 1GB in size, and using it is a fairly simple process, as you can see in this how-to guide.
By George Norman on 02 Aug 2017
Voice Fill uses spoken language to enter queries into search engines. Notes is a built-in notepad that you can use to jot down ideas. And Send lets you send encrypted, self-destructing files over the internet.
By George Norman on 16 Jun 2017
When companies pick an official slogan or motto, they usually go with something they think will impress. Well, these aren't your regular slogans. These are snarky slogans thought up by a cranky a-hole.
Sponsored Links
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
Mozilla Security Bug Bounty Program Now Offers More Money
HTML Linking Code