Google is upping its Linux bug bounty prize

Fancy winning $91,337? Just track down some Linux security flaws

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

White hat hackers and other bounty hunters rejoice -Googlehas just significantly raised the prizes for discovering zero-day and one-day vulnerabilities on Linux-poweredendpoints.

In ablog postby Vulnerability Matchmaker Eduardo Vela, it says that Google was recently forced to up the ante “to match our rewards to the expectations” of theLinuxcommunity. As the move turned out to be a success, the company has now decided to extend it until the end of the year.

That being said, until December 31 2022, Google will pay anywhere between $20,000 and $91,337 for exploits of vulnerabilities in the Linux Kernel, Kubernetes, GKE, or kCTF, that are exploitable in its test lab.

L33T sp33k

L33T sp33k

For those wondering why $91,337, and not 90,000, 91,000, or any other round number - 1337 is also known as “Leet speek”, or “elite speak” - the language of the hacking and gaming communities. This is the community that often shortens words and replaces letters with numbers, so “elite” will become “1337”,

So, what exactly did Google do?

ExpressVPN just majorly upped its bug bounty reward>Meta is getting serious about its bug bounty program>Apple pays major bug bounty to fix Safari flaw that hacked your webcam

“These changes increase some one-day exploits to $71,337 USD (up from $31,337), and make it so that the maximum reward for a single exploit is $91,337 USD (up from $50,337),” Google explained.

“We also are going to pay even for duplicates at least $20,000 if they demonstrate novel exploit techniques (up from $0). However, we will also limit the number of rewards for one-days to only one per version/build.”

Are you a pro? Subscribe to our newsletter

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

7 myths about email security everyone should stop believing

Best Usenet client of 2024

Smeg Combi Steam Oven review: a multi-functional countertop oven that looks stunning and cooks well