For what is worth, while @GoogleVRP is a bit eccentric, this type of content makes total strategic sense for us. 2/n
-
-
Prikaži ovu nit
-
First of all, we do this for the bug hunters. I think with this type of partnership we are able to give
@wtm_offensi and his company exposure that they wouldn't otherwise get. 3/nPrikaži ovu nit -
Second, we do this for beginners and pros that don't know how bug hunting for Google is like, and how it's different from programs that focus on low hanging fruit. 4/n
Prikaži ovu nit -
Finally, we do this because we want to show off! Google Security is not bad, and a great way to demonstrate strength is openly talking about your weaknesses. 5/n
Prikaži ovu nit -
One final note. 5k was just for this bug, Wouter found more bugs in this space, and some of this research was sponsored through Grants. I don't want to leak how much he is making, but when research costs stops making financial sense, we'll fix it. 6/n
Prikaži ovu nit -
But generally, if you want to do this type of research, and have reported a few cool bugs to Google, please apply for Grants! https://www.google.com/about/appsecurity/research-grants/ … 7/n
Prikaži ovu nit -
Oh, and also.. we will pay 100k to the best Cloud Security bug report.. so, plz be hacking
https://security.googleblog.com/2019/08/awarding-google-cloud-vulnerability.html … 8/8Prikaži ovu nit
Kraj razgovora
Novi razgovor -
-
-
Oh wow you did it
.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
vulnerabilities,
web security research,
leading Google's product security response team. I'm not mad. I'm mentally divergent. (personal account)