Crowdfense, a vulnerability research hub announced that they ready to pay $3 million USD per successful submission of iOS and Android zero-day vulnerability exploits.
In this year Crowdfense offering a larger 15M USD acquisition program to focus the important areas of research, inclusive of Networking Devices, WiFi/Baseband, and Messengers.
There are many researchers were paid nearly 10 million USD last year with this “Vulnerability Research Hub” (VRH) online platform.
Successful submission of the previously unreported bug, exclusive capabilities would be eligible to receive bounty range from 100,000 USD to $3 million USD.
Crowdfense would like to receive the zero-days for Windows, MacOS, iOS, Android and other various platforms and they categorized the different price for each vendor.
Windows and macOS zero bugs reporter eligible to receive upto 1.5 million USD and they particularly expecting the Chrome and Safari RCE bugs that related to sandbox escape.
Crowdfense is willing to pay up to $1.5 million to $3 Million for iOS, Android zero-day exploit interaction with iOS and Android PE.
Also other zero-day exploits such as instant messengers, SMS/MMS RCE, Routers RCE, and WiFi/baseband RCE eligible to receive up to 100k to 1.5 million USD.
According to Crowdfense, Within this program, Crowdfense evaluates only fully functional, top-quality 0-day exploits.
Apart from this, Crowdfense offered free high-level technical training sessions to hundreds of vulnerability researchers around the world.
“The first Researcher to submit indisputable proof of a fully working chain within the scope of our public Bug Bounty program will receive a 10% bonus on his/her payout (if Crowdfense decides to buy). For a working partial chain, the bonus will be 5%, calculated on the agreed payout.” Clowdfense said.
Learn: Mastery Bug Bounty Bundle online Course
Also Read:
Hackers Earned More Than $19 Million in 2018 by Participating in Bug Bounty Programs
Safehats – The Best Alternative Bug Bounty Program for HackerOne and Bugcrowd
Netflix Launches Public Bug Bounty Program With Top Reward as $15,000
Intel Expands Bug Bounty Program Rewards To $250,000 for Meltdown and Spectre Like Vulnerabilities
Recent research has revealed that a Russian advanced persistent threat (APT) group, tracked as "GruesomeLarch"…
Microsoft's Digital Crimes Unit (DCU) has disrupted a significant phishing-as-a-service (PhaaS) operation run by Egypt-based…
The Russian threat group TAG-110, linked to BlueDelta (APT28), is actively targeting organizations in Central…
Earth Kasha, a threat actor linked to APT10, has expanded its targeting scope to India,…
Raspberry Robin, a stealthy malware discovered in 2021, leverages advanced obfuscation techniques to evade detection…
Critical infrastructure, the lifeblood of modern society, is under increasing threat as a new report…
