Η Google ξεκίνησε ένα bug bounty competition μέσω του Project Zero. Ο contest επιτρέπει στους συμμετέχοντες να παρουσιάσουν κρίσιμες ευπάθειες στην πλατφόρμα του Android πριν τα ανακαλύψουν κακόβουλοι χρήστες.
Project Zero researcher Natalie Silvanovich unveiled the contest Tuesday in a blog post on the company. Silvanovich said that despite the constant stream of bug discoveries coming from Google's security team, "there are many unique errors security, high quality discovered through the hacking competition.”
So the company decided to run its own competition to search for serious security flaws on the Android platform.
Google is asking researchers interested in competing in the Project Zero competition to focus on vulnerabilities or bug chains that could allow attackers to execute remote code on multiple Android devices. However, there is a catch – Google only asks you to start with their phone number and email address devices.
In the contest, exploits are accepted that successfully target any version of Android Nougat on Nexus 5X and 6P devices.
The first prize will be worth 200.000 dollars, while the second prize will reach 100.000 dollars. The third valid entry will earn from 50.000 dollars.
Of course after the end of the contest, the vulnerabilities, exploits and names of the winners will be published.