Samsung Mobile bug bounty: Η Samsung εγκαινίασε ένα program bug bounty, και διαθέτει μέχρι και 200.000 δολάρια σε όποιον ανακαλύψει μια κρίσιμη ευπάθεια στο λογισμικό που θα καθιστούσε δυνατή την παραβίαση κάποιας συσκευής της.
The findings that will be identified by the researchers, should affect devices, services, or applications developed and signed by Samsung or by third-party companies that are specifically designed for Samsung.
All devices must be fully up to date and the affected services should be active.
Samsung Mobile bug bounty: The list of devices taking part in the contest search ευπαθειών περιλαμβάνει τα πιο πρόσφατα μοντέλα, όπως τα S8, S7 και Note 8, αλλά και παλαιότερα μοντέλα που κυκλοφόρησαν το 2016, όπως το J3 και το A5. Το Samsung Galaxy S6 is also included in the program.
"We take security and privacy issues very seriously. "As an appreciation for helping Samsung Mobile improve the security of our products and minimize the risk to our end consumers, we offer a reward program for appropriate security vulnerability reports."
"Through this program, we hope to build and maintain valuable relationships with researchers who coordinate the disclosure of security issues with Samsung Mobile."
Samsung also said it won't pay researchers for flaws that cause apps to crash without one exploit.
Of course, all the vulnerabilities you will discover should not be revealed to the public but are privately reported to Samsung, which will then check your findings and decide whether or not to issue a payment.
If you are interested and have the knowledge and skills, you can see the terms of bug bounty from the following link:
https://security.samsungmobile.com/rewardsProgram.smsb
For some potential vulnerability reporting from here.
