Google is about to end its bug bounty program as Android system security has been significantly improved due to reduced vulnerabilities

Recently, Google announced that it will terminate the Google Play Security Reward Program (GPSRP) that has been running for nearly 7 years on August 31, 2024. This decision is based on the significant improvement in the security of the Android system. To developers The email pointed out that as the security of the Android operating system has been enhanced and its functions have been strengthened, the number of vulnerabilities available for security researchers to exploit has decreased, so the GPSRP plan is no longer needed.

1. According to the plan, all vulnerability reports submitted before August 31 will be evaluated before September 15, and the final reward decision will be announced before the end of September. Google expresses its gratitude to the researchers who participated in the GPSRP , and promises to review and process all submitted vulnerability reports to ensure that the research results are recognized.

2. GPSRP was launched in 2017 to inspire developers and researchers to discover security vulnerabilities in Android apps. In the initial stage, the program is only open to some Android developers, and the rewards provided are US$5,000 for remote code execution vulnerabilities and US$1,000 for private data leakage vulnerabilities. In 2019, the award amounts increased to $20,000 and $3,000 respectively.
3. Although Android security has improved, the end of GPSRP may reduce the financial incentive for security researchers to find vulnerabilities in the Play Store, which may have some impact on the security of the App Store.
4. Google’s decision reflects the progress of Android system security, but it also raises concerns about future application security. As GPSRP comes to an end, Google will look for new ways to maintain and improve the security of its App Store.

The above is the detailed content of Google is about to end its bug bounty program as Android system security has been significantly improved due to reduced vulnerabilities. For more information, please follow other related articles on the PHP Chinese website!