Skip to main content

Google guves Rs 71 lakh to Chinese researchers for Pixel devices

Google awarded over  USD 112,000 to a Chinese security researcher for reporting an exploit in Google Pixel smartphones.
The Android security team posted in the Google developers forum that Guang Gong of Alpha Team, Qihoo 360 Technology Co. Ltd. had submitted a working remote exploit chain in August 2017. This was the first such exploit since the expansion of Android Security Rewards (ASR) program.
“For his detailed report, Gong was awarded USD 105,000, which is the highest reward in the history of the ASR program and USD 7,500 by Chrome Rewards program for a total of USD 112,500,” Mayank Jain and Scott Roberts wrote for the Android security team.

Gong in a blog post also outlined the bugs he and his team discovered.
The issues reported by Gong and others as well were resolved as part of the December 2017 monthly security update. The company thanked researcher community for their contributions.
All pixel devices will automatically install these updates however the users need to restart their devices to complete the installation.
The internet giants through its Android security rewards program recognises the contributions of security researchers who invest their time and effort in identifying bugs and vulnerabilities. The program covers security vulnerabilities discovered in the latest available Android versions for Pixel phones and tablets. Currently, Pixel 2, Pixel, Pixel XL, Pixel C are the devices under the program.
Last year, rewards were increased under the program. Rewards for a remote exploit chain or exploit leading to TrustZone or Verified Boot compromise was increased from USD 50,000 to USD 200,000. Whereas, rewards for a remote kernel exploit increase from USD 30,000 to USD 150,000.

Labels:

Comments

Post a Comment

Popular posts from this blog

Exynos Galaxy S10 visits GeekBench, still behind the iPhone XS in single-core test

The Samsung Galaxy S10 has been spotted on GeekBench and the numbers are in. This time, it's the Exynos 9820 variant for South Korea (SM-G973N), and there are notable differences with the previously seen results from the S10+  in Snapdragon 855 trim . The single-core result, in particular, is far ahead of any other chip in the Android world - the current Kirin 980 (around the 3400s) and Snapdragon 845 (ballpark is in 2400s) are no match for the next-gen Exynos, and early Snapdragon 855 figures are much lower too (3400-3550 depending on who you ask). In fact, the older Exynos 9810 gets closest, posting single core results upwards of 3600 and into the high 3700s under the right conditions. Even so, the iPhone XS remains out of reach. GeekBench 4.1 (single-core) Higher is better Sort by Label Sort by Value Apple iPhone XS Max 4777 Samsung Galaxy S10 (E9820) 4382 Samsung Galaxy S9+ 3771 Samsung Galaxy Note9 3642 Samsung Galaxy S10+ (S855) 3413 Huawei Mate 20 Pro 329...
Post a Comment
Read more

How to book Indian Railways tickets on new IRCTC website; Explained in 8 easy steps

Recently, the e-ticketing arm of Indian Railways i.e., Indian Railway Catering and Tourism Corporation (IRCTC) modernized its official website. Now, a new version of the official website, in its beta form, is available for passengers to try. June 4, 2018 12:38 PM The revamped IRCTC website boasts of several passenger-friendly measures, the coolest of which is the latest software that predicts the chances of your waitlisted ticket getting confirmed. New IRCTC next-generation e-ticketing website: Recently, the e-ticketing arm of Indian Railways i.e., Indian Railway Catering and Tourism Corporation (IRCTC) modernized its official website. Now, a new version of the official website, in its beta form, is available for passengers to try. The revamped IRCTC website boasts of several passenger-friendly measures, the coolest of which is the latest software that predicts the chances of your waitlisted ticket getting confirmed. While other railway portals already offer a simi...
Post a Comment
Read more