YIBADA

Google increases bug bounty for Android OS after paying $550K+

| Jun 18, 2016 08:00 AM EDT

Google Android Robot

Google launched its Android Security Rewards program last year and has since paid out over $550,000 to 82 people for discovering security holes in its mobile OS. A bug hunter received the biggest bounty of $75,750 for 26 security reports. The Alphabet company is now offering up to 50 percent more money for Android OS security vulnerabilities reported after June 1, 2016.

Meanwhile, 15 people received at least $10,000 in bug bounties from Google during the past year. The average was  $2,200 per reward as well as $6,700 per researcher.

"High quality" submissions will now earn 50 percent higher rewards than regular bug reports, according to Engadget. They must show proof concept and include a proposed fix.  

Most of the bug reports were for security issues for Android OS. They will help to protect smartphones and tablets from threats such as malicious software. However, Google reported that over one-quarter of all bugs were related to code outside Android Open Source Project (AOSP).

The company stated that fixing kernel and device driver bugs is also helpful. They boost security for the general mobile industry.  

Google's rewards program will  encourage hackers and developers to report security vulnerabilities rather than exploit them for nefarious uses such as hack attacks. The company has similar programs for services such as Chrome OS.

Google has paid out a grand total of over one million dollars in bug bounties. Anyone who finds security vulnerabilities must sign up for the Android Security Rewards program to get a piece of the action.  

In related news, McAfee Labs warns about hack attacks from multiple mobile apps in its  newest security report, according to Enterprise Apps Tech. It involves one app that can access restricted data on a mobile device, and another app that can access information outside the device. The two apps must also communicate with each other.    

There are different ways hackers can create "colluding apps." McAfee also claims there are three types of threats that include information, financial, and service misuse.

Vincent Weafer is VP of Intel Security's McAfee Labs group. He explained the company's goal is to develop new tools and methods to detect malicious apps that team up.   

Here's how to uninstall malware on Android devices: 

Related News

Most Popular

EDITOR'S PICK