avast! Introduces New Bug Bounty Program
Aware of the fact that bugs need to be quickly addressed, avast! introduced its new bug bounty program. You could win as much as $5,000 (and even more) if you find a serious security-related bug and report it.
By relying on the community, security company avast! is confident it can more efficiently find and eliminate security-related bugs. The simple truth of the matter is that bugs affect all software applications out there. To keep the users happy, to keep everything running smoothly, these bugs must be quickly uncovered and efficiently addressed. By introducing the avast! Bug Bounty Program, the security company is turning to the community to help it uncover bugs. And it is putting up cash rewards as a means of enticement.
These cash rewards start at $200 bucks and go up to as much as $5,000 – payment will be done preferably via PayPal. The base payment for a bug is $200 – then depending on the criticality of the bug, which is judged independently by a panel of avast! experts, the cash reward goes up. If you manage to find a bug that leads to remote code execution, you could earn between $3,000 and $5,000 – and even more.
Speaking about bugs that lead to remote code execution, these are the most critical bugs you can find. As part of the bounty program, avast! would like you to also look for bugs that lead to: local privilege escalation, Denial-of-Service (DoS), escape from the avast! sandbox, scanner bypass, and other bugs with serious security implications.
“As a security company, we very much realize that security bugs in software are reality. But we also realize that companies that are able to use their user communities to find and fix bugs are generally more successful that those that don’t. Therefore, we have decided to reward individuals who help us find and fix security-related bugs in our own software. This makes us probably the first security vendor with a reward program like this,” announced avast! via its official blog.
Additional information on avast!’s Bug Bounty Program are available here and here.
By relying on the community, security company avast! is confident it can more efficiently find and eliminate security-related bugs. The simple truth of the matter is that bugs affect all software applications out there. To keep the users happy, to keep everything running smoothly, these bugs must be quickly uncovered and efficiently addressed. By introducing the avast! Bug Bounty Program, the security company is turning to the community to help it uncover bugs. And it is putting up cash rewards as a means of enticement.
These cash rewards start at $200 bucks and go up to as much as $5,000 – payment will be done preferably via PayPal. The base payment for a bug is $200 – then depending on the criticality of the bug, which is judged independently by a panel of avast! experts, the cash reward goes up. If you manage to find a bug that leads to remote code execution, you could earn between $3,000 and $5,000 – and even more.
Speaking about bugs that lead to remote code execution, these are the most critical bugs you can find. As part of the bounty program, avast! would like you to also look for bugs that lead to: local privilege escalation, Denial-of-Service (DoS), escape from the avast! sandbox, scanner bypass, and other bugs with serious security implications.
“As a security company, we very much realize that security bugs in software are reality. But we also realize that companies that are able to use their user communities to find and fix bugs are generally more successful that those that don’t. Therefore, we have decided to reward individuals who help us find and fix security-related bugs in our own software. This makes us probably the first security vendor with a reward program like this,” announced avast! via its official blog.
Additional information on avast!’s Bug Bounty Program are available here and here.
