Web Security


After Paying $2M in Rewards, Google Multiplies Some Bug Bounties Five Times

Google’s bug bounty program has been one of the more successful reward systems of its kind, and the company has regularly modified and expanded the program over the years to keep pace with what’s going on in the industry. Google also has increased the rewards it offers for certain kinds of vulnerabilities several times, and the company is doing it again, raising the lower reward level from $1,000 to $5,000.


Dennis Fisher and Mike Mimoso discuss the news from Black Hat and DEF CON, particularly the fact that the Web seems to be broken and that a lot of the attacks revealed in Las Vegas don’t have easy solutions.

The long-anticipated inclusion of mixed-content blocking in Mozilla Firefox is now at hand, with the security feature showing up in the just-released Firefox 23. The feature, which helps defend users against certain kinds of man-in-the-middle attacks, is on by default in the new browser.

The Black Hat conference is one of the best opportunities each year to see new and innovative research, commune with some of the smartest folks in the industry and generally get a sense of where things stand and where they’re going. This year’s conference was one of the larger in history, both in terms of number of attendees and volume of presentations, and there was a lot to see and hear. With 11 research tracks, keynotes and press conferences happening from morning till night, it was impossible to see it all, even for the most motivated and caffeinated person.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.