Google Offers $1000 Bounty for Bugs in Top Play Store Apps
Google is offering a bounty of up to $1000 to researchers who can find bugs in the most popular apps in its Play Store.
The program, called Play Security Reward Program, will be offered through the HackerOne platform. It was launched last Thursday with 13 apps from 8 developers including Alibaba, Dropbox, Duolingo, Headspace, Line, Mail.ru, Snapchat, and Tinder. Only a limited number of developers can participate at present, but Google says this may change once all the details have been worked out.
The program is currently restricted to remote-code-execution (RCE) vulnerabilities and corresponding POCs (Proof of concepts) on Android 4.4 devices and higher.
Source: Bleeping Computer