Skip to main content

Google guves Rs 71 lakh to Chinese researchers for Pixel devices

Google awarded over  USD 112,000 to a Chinese security researcher for reporting an exploit in Google Pixel smartphones.
The Android security team posted in the Google developers forum that Guang Gong of Alpha Team, Qihoo 360 Technology Co. Ltd. had submitted a working remote exploit chain in August 2017. This was the first such exploit since the expansion of Android Security Rewards (ASR) program.
“For his detailed report, Gong was awarded USD 105,000, which is the highest reward in the history of the ASR program and USD 7,500 by Chrome Rewards program for a total of USD 112,500,” Mayank Jain and Scott Roberts wrote for the Android security team.

Gong in a blog post also outlined the bugs he and his team discovered.
The issues reported by Gong and others as well were resolved as part of the December 2017 monthly security update. The company thanked researcher community for their contributions.
All pixel devices will automatically install these updates however the users need to restart their devices to complete the installation.
The internet giants through its Android security rewards program recognises the contributions of security researchers who invest their time and effort in identifying bugs and vulnerabilities. The program covers security vulnerabilities discovered in the latest available Android versions for Pixel phones and tablets. Currently, Pixel 2, Pixel, Pixel XL, Pixel C are the devices under the program.
Last year, rewards were increased under the program. Rewards for a remote exploit chain or exploit leading to TrustZone or Verified Boot compromise was increased from USD 50,000 to USD 200,000. Whereas, rewards for a remote kernel exploit increase from USD 30,000 to USD 150,000.

Labels:

Comments

Post a Comment

Popular posts from this blog

How to book Indian Railways tickets on new IRCTC website; Explained in 8 easy steps

Recently, the e-ticketing arm of Indian Railways i.e., Indian Railway Catering and Tourism Corporation (IRCTC) modernized its official website. Now, a new version of the official website, in its beta form, is available for passengers to try. June 4, 2018 12:38 PM The revamped IRCTC website boasts of several passenger-friendly measures, the coolest of which is the latest software that predicts the chances of your waitlisted ticket getting confirmed. New IRCTC next-generation e-ticketing website: Recently, the e-ticketing arm of Indian Railways i.e., Indian Railway Catering and Tourism Corporation (IRCTC) modernized its official website. Now, a new version of the official website, in its beta form, is available for passengers to try. The revamped IRCTC website boasts of several passenger-friendly measures, the coolest of which is the latest software that predicts the chances of your waitlisted ticket getting confirmed. While other railway portals already offer a simi...
Post a Comment
Read more

WhatsApp for Android beta gets Private Reply feature: How to use it

Last year, there were reports that WhatsApp is working on a new feature called Private Reply. This feature was also rolled out to the Windows Phone beta version of the app but it was only for a short time period. Now, this feature is being rolled out to the Android beta version of the app. We can expect the users of the stable version of the app to get this feature to get this feature soon. According to WABetaInfo, the latest WhatsApp Android beta version 2.18.335 has received the Private Reply feature. This feature lets users send private messages to a member of the group without letting other members know about it. Notably, WhatsApp already lets users reply to members in a group individually. But the new feature, which is also similar to individual reply directs you to the personal chat with the specific member. You can send messages privately to the member in the group without letting the others in the group know about the same. How to use...
Post a Comment
Read more

You have many reasons why you not invest in bitcoins or other cryptocurrencies

To invest or not to invest - that is the question many of us have in our minds when it comes to cryptocurrencies at the moment. A lot of us are tip-toeing around the idea of investing in them but with all the uncertainty that surrounds them (both in terms of regulations and its legality) we remain cautious. Other than investing in an unregulated space and the potential risk of losing your money by falling prey to a ponzi scheme, you have more reasons to stay away from such investments. Here are six more reasons why you should stay away from cryptocurrencies (well, at leastuntithere is more clarity) 1. Banks have started stopping purchase of cryptocurrency with their cards Recently, Citibank in an email notification to its customers has said that its credit and debit cards cannot be used to purchase cryptocurrencies. Following this, SBI Card has also cautioned customers against risks associated with  bitcoin  and other crypto-currencies and is in d...
Post a Comment
Read more