Feeds

Google dispenses first jackpot award to security bug hunter

Elite bug-finder handed $3,133.7(0) reward

The Power of One Infographic

Google updated its Chrome browser software on Wednesday to address a variety of security bugs, including the first vulnerability to qualify its finder for the recently introduced top-tier of its Chromium Security Reward scheme.

Sergey Glazunov earns an “elite” $3,133.7 award for his bug-finding efforts as well as pocketing the base-line $1,337 reward and other incentives for the discovery of lesser bugs, also resolved by the latest cross-platform browser security update.

Glazunov's major find was a crucial flaw involving a "pointer in speech handling". He also found four "high" risk vulnerabilities variously involving video and anchor handling as well as miscued pointers. In total the 8.0.552.237 release addresses one critical flaw, 13 "high-risk" bugs and two less severe medium-danger vulnerabilities, as detailed in Google's bulletin here. The ad broker paid a total of $14,000 in security awards to various researchers.

Google is withholding details of the respective bugs until users have a reasonable chance to apply security fixes – in case the added details might help the bad guys to develop workable exploits. ®

The smart choice: opportunity from uncertainty

More from The Register

next story
That AMAZING Windows comeback: Wow – 0.5% growth in 2015
Whoooah, my face is going all floppy with the speed
Think Google Glass is creepy? Wait until it READS YOUR MIND
Startup penetrates the mind of Glassholes
I've got 99 problems, but a Facebook boycott ain't one
If you're havin' Zuck problems, I feel bad for you son
Bezos house 'on FIRE': Amazon in-app kiddy megabuck charge storm
FTC prepares boot for firm's ass in lawsuit
Victim of Tor-hidden revenge smut site sues Tor Project developers
But EFF lawyer says deep-web team 'no more liable' than web server makers
Chrome Remote Desktop adds Linux to supported OS list
Drive Debian from the confines of a Chromebook
LibreSSL crypto library leaps from OpenBSD to Linux, OS X, more
First cross-platform version of cleaned-up OpenSSL fork
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
The Power of One Brief: Top reasons to choose HP BladeSystem
Download this brochure to find five ways HP BladeSystem can optimize your business with the power of one.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.