Bug bounties are pretty commonplace these days, with many companies offering cash prizes hackers who are able to compromise the security on their devices. Google is no stranger to these bug bounties, and are holding yet another one with at least USD350,000 up for grabs.
Called Project Zero, Google is asking the public to compromise the Nexus 6P and the Nexus 5X in exchange for cash money. In this bug bounty/contest, those interested must be able to access the phones in question solely through the devices’ phone numbers and associated email addresses. Once in, they must show that they’re capable of remotely executing codes on both phones just by opening an email or a text message.
There are a few caveats with this contest though, with the biggest one being that Google will only note the first person that submits that particular bug. Every submission after the first will not be considered, so there is a race-against-the-clock element at work with the Project Zero contest as well. The contest will be held over the course of six months, after which, the first, second and third place winners will receive USD200,000 (RM826,700), USD100,000 (RM413,350), and USD50,000 (RM206,687) respectively. Furthermore, Google will use the exploits submitted during the contest to gather info on how to protect its devices from similar vulnerabilities.
Source: Google Project Zero, Engadget