|05 Apr 2014||#1|
| || |
How much is a security bug report worth to Facebook? About $2,100
Facebook wasn't the first to offer security researchers bounties for reporting vulnerabilities – but the social network reports it paid out $1.5m in 2013 for bug reports, and says it is increasing the amount of cash on offer in the coming year.
According to the advertising giant, it received 14,763 reports of suspected flaws last year, an increase of 246 per cent on the 2012 figure. Unfortunately for Facebook's security team there were a lot of false positives in there, and only 687 write-ups turned out to be worth paying for – and, thankfully, roughly six per cent were classified as high-severity issues.
"Most submissions end up not being valid issues, but we assume they are until we've fully evaluated the report. That attitude makes it possible for us to triage high-priority issues quickly and get the right resources allocated immediately," said Collin Greene, a security engineer at Facebook.
|My System Specs|
|Similar help and support threads for2: How much is a security bug report worth to Facebook? About $2,100|
|Security researcher finds major security flaw in Facebook||Security News|
|Facebook defends security strategy||Security News|
|The state of Facebook security||Security News|
|What Is Your Facebook Data Worth||System Security|
|Report: Facebook caught sharing secret data with advert||News|
|Our Sites ||Site Links ||About Us ||Find Us |
© Designer Media Ltd
All times are GMT -5. The time now is 06:43 PM.