Summary
-
Major tech giants like Google pay researchers for finding vulnerabilities in their products.
-
Google is shutting down the Google Play Security Reward Program on August 31, 2024.
-
It will review all submitted reports before the program ends, though payouts can take a few weeks.
It’s not like the malicious actors have stopped looking… If they are finding fewer vulnerabilities, it sounds to me they should be paying more.
“Due to the success of the program, vulnerabilities are harder to find. The amount we are paying is now insufficient to justify the time and effort for most researchers.”