Google challenges hackers to exploit Chrome; Up to $1 Million in prizes
World renowned search giant Google have announced they would pay up to $1 million in prizes to hackers that can manage to exploit their browser; the Google Chrome at this year’s CanSecWest Security Conference.
Google in a statement on their blog stated, “While we’re proud of Chrome’s leading track record in past competitions, the fact is that not receiving exploits means that it’s harder to learn and improve. To maximize our chances of receiving exploits this year, we’ve upped the ante. We will directly sponsor up to $1 million worth of rewards in the following categories.”
At the previous Pwn2Own Contest both internet browser software Internet Explorer from Microsoft and Safari from Apple weren’t able to withstand the pressure from hackers while not even a single hacker was able to get through Chrome’s defences.
Google will pay rewards in 3 categories that include $60,000 for anyone able to perform a full exploit using only existing bugs in the browser, $40,000 for a partial exploit that would include using other bugs to get through Chrome.
Google will offer consolation prices of $20,000 for findings of bugs in other extensions, software and add-ons that would eventually find a way into Chrome, “Bugs in one or more of Flash, Windows or a driver. These exploits are not specific to Chrome and will be a threat to users of any web browser. Although not specifically Chrome’s issue, we’ve decided to offer consolation prizes because these findings still help us toward our mission of making the entire web safer,” stated Google Chrome’s security team.
The statement also notes all winners will receive a Chromebook.
Finally presenting the conditions to hackers, the statement mentions, “We will issue multiple rewards per category, up to the $1 million limit, on a first-come-first served basis. There is no splitting of winnings or “winner takes all.” We require each set of exploit bugs to be reliable, fully functional end to end, disjoint, of critical impact, present in the latest versions and genuinely “0-day,” i.e. not known to us or previously shared with third parties. Contestant’s exploits must be submitted to and judged by Google before being submitted anywhere else.”
The CanSecWest Conference is an annual event discussing computer network hacks and defences, commercial security solutions and other security features, this year’s conference is to be held in Vancouver, Canada between the 7th and 9th of March 2012.
- Rome Protest Turns Up Heat On New PM Letta
- North Korea Fires Three Short-Range Missiles
- GOP hopes IRS scandal will snag health care law
- Japan Economy on the Road to Recovery
- Assad: Syria transition talks are internal matter
- Suspected US drone in Yemen kills 4 militants
- WHO: Death Toll From New Bird Flu In China Rises To 36
- Former Argentine Dictator Videla Dies In Prison At Age 87
- IMF says Cyprus at risk of even deeper recession
- UN says Syrian refugees top 1.5M