Samsung has become the latest tech company to introduce a bug bounty program, announcing that it will pay rewards of up to $200,000 to anyone who discovers vulnerabilities in its products. The Mobile Security Rewards Program covers 38 Samsung mobile devices which are still receiving monthly and quarterly security updates. The mobile devices eligible for the rewards include those in the Galaxy S, Galaxy Note, Galaxy A, Galaxy J, and the Galaxy Tab series. Samsung’s flagship devices, the S8, S8+, and Note 8 are included.
The company says it will also reward those who find vulnerabilities in Bixby, Samsung Pay, Samsung Account, Samsung Pass, and other services. The amount paid starts from $200 and will depend on the severity of the bug and the researcher’s “ability to provide proof of concept.” A pilot bug bounty program was introduced in January 2016.
The S8, S8+, and Note 8 are included in the program
Samsung’s bounty of $200,000 comes in at slightly lower than Microsoft’s $250,000 for Windows 10 security bugs. Facebook has paid security researchers for finding bugs, while Google also runs a program, and Apple launched an invite-only program with rewards of up to $200,000 as well. All these bounties has led to helping hackers make millions legally, while a single researcher has made $225,000 just by hacking browsers.