Samsung has launched their own Mobile Security Program and they are willing to pay users for up to $200,000 for reporting vulnerabilities in any of their products and services.
The bug bounty program will cover all the tablets and handsets the company has released from 2016 onwards (total of 38 devices). The program is also open for Bixby, Samsung Pay, Samsung Account, Samsung Pass, and other services.
It won’t be an easy cash out though. In order to qualify, you need to back up your claim with solid research. Given that you have identified an exploit that can compromise the performance of their devices without the need of any physical connections or third-party applications, you are eligible to take home a cash prize from Samsung for up to $200,000. The bounty will be rewarded depending on the severity of the bug and the researcher’s “ability to provide proof of concept.”
Samsung has already launched a bug bounty program for their Smart TVs. However, with the Note 7 fiasco last year and the recent discovery of over 40 unpatched exploits in Tizen OS ealier this year, it is great to see that Samsung is taking these problems seriously.
“As a leading provider of mobile devices and experiences, Samsung recognizes the importance of protecting users’ data and information, and prioritizes security in the development of each of its products and services,” said Injong Rhee, Executive Vice President and Head of R&D, Software and Services of the Mobile Communications Business at Samsung Electronics in a press release.
“As part of our commitment to security, Samsung is proud to work in close partnership with the security research community to ensure that all of our products are monitored closely and continually for any potential vulnerabilities.”
We have seen this move from bigger companies like Microsoft, Google, Apple, Facebook and Twitter. These kind of programs has led to helping hackers make money legally.
In 2015, Google sponsored a contest called Pwn2Own. The contest is open for everyone who can publicly exploit bugs in popular browsers and softwares. A researcher named JunHoon Lee take home $250,000 for finding three bugs affecting Internet Explorer, Chrome and Safari.