Google will also offer rewards for methods that bypass Chrome’s Safe Browsing download protection features.
Hunting for bugs in Google’s Chrome OS just became a potentially more lucrative endeavor.
Google is doubling the max Chromebook bug bounty from $50,000 to $100,000.
The move comes after Google last year first introduced the $50,000 reward for the “persistent compromise of a Chromebook in guest mode.”
“Since we introduced the $50,000 reward, we haven’t had a successful submission,” Google’s Nathan Parker and Tim Willis wrote in a blog post. “That said, great research deserves great awards, so we’re putting up a standing six-figure sum, available all year round with no quotas and no maximum reward pool.”
Google is also extending the program to offer rewards for methods that bypass Chrome’s Safe Browsing download protection features. Head over to Google’s rewards page for more details on this new “Download Protection Bypass” category, and all the rules of the program. You can report any bugs you find via this form.
Google has been running its Security Reward Program since 2010, and last year paid researchers more than $2 million. One of the more notable “bounties” last year went to a researcher who managed to buy Google.com for one minute.
“We look forward to seeing some amazing bugs and continuing to work with the security research community,” Parker and Willis wrote. “Happy hacking!”
Meanwhile, Google also earlier this year expanded its bug bounty program to cover Android-powered gadgets, like the Nexus 6 and Nexus 9.
Google will pay for each step required to fix a security bug: $500 for moderate severity; $1,000 for high; and $2,000 for critical.