Samsung just joined the list of companies offering bug bounty programs including Apple, Microsoft. The company today announce starting of Samsung Bug Bounty Program, proposing to pay rewards up to $200,000 to those who discover unreported security vulnerabilities in their products. Microsoft offers a reward of $250,000 while Apple has the same amount of reward for Bounty Hunters $200,000.
“As a leading provider of mobile devices and experiences, Samsung recognizes the importance of protecting users’ data and information, and prioritizes security in the development of each of its products and services,” Injong Rhee, Executive Vice President and Head of R&D, Software and Services of the Mobile Communications Business at Samsung Electronics said in a press release. “As part of our commitment to security, Samsung is proud to work in close partnership with the security research community to ensure that all of our products are monitored closely and continually for any potential vulnerabilities.”
What is Bug Bounty?
A bug bounty program is a deal offered by many websites and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those about exploits and vulnerabilities.
Samsung bug bounty – eligible products and services
Samsung named its bug bounty program Mobile Security Rewards Program, and it covers 38 of Samsung Mobile Devices which are receiving monthly or quarterly security updates. Samsung flagship S8, S8+ and Galaxy Note 8 are included in the program. The devices in reward program also include those in Galaxy S and Galaxy Note, Galaxy J and Tab Series.
The company will also pay rewards to those who submit potential vulnerabilities in latest Samsung Mobile Services including Bixby, Samsung Account, Samsung Pass and Samsung Pay. It is a program which will reward bounty hunters for their ability to hack into Samsung devices or services and provide proof of concept.
Samsung added that the first bug bounty program was piloted in January 2016, with the latest full-fledged Mobile Security Rewards Program going effectively immediately.