Google Offers Cash Rewards for Finding Android App Security Flaws
Google has launched a new bug bounty program called Mobile VRP, which will pay security researchers for finding flaws in the company's Android applications. The program aims to speed up the process of finding and fixing weaknesses in first-party Android apps developed or maintained by Google. The list of in-scope apps includes Tier 1 Android applications, and the rewards range from $750 to $30,000 depending on the severity of the vulnerability. Google has rewarded more than $50 million to thousands of security researchers worldwide for reporting over 15,000 vulnerabilities since launching its first VRP over a decade ago.