Tuesday, May 13, 2025
HomeSecurity NewsFacebook Launches Data Abuse Bounty Program With rewards Up to $40,000

Facebook Launches Data Abuse Bounty Program With rewards Up to $40,000

Published on

SIEM as a Service

Follow Us on Google News

Facebook launches data Abuse Bounty Program that rewards researchers who report the abuse of data by app developers. The reward’s based on just like any other bug Bounty Program. For researchers who notifies high severity bug’s, they offer rewards up to $40,000 as a maximum payout.

This new Data Abuse Bounty Program as a part of our efforts to more quickly uncover potential abuse of people’s information,” said Collin Greene, Head of Product Security.

The move come’s after Overall 87 Million affected Facebook Users has been identified and most of them in the US but at least 1 million Facebook Users in the UK and More than 1 Million Facebook Users affected in Indonesia, the Philippines alone.

- Advertisement - Google News
Data Abuse Bounty

Facebook said the main goal of this program is to protect users by fixing security vulnerabilities and to restrict the user data collected by app developers.

Bad actors can maliciously collect and abuse Facebook user data even when no security vulnerabilities exist. This program is intended to protect against that abuse.”

Mozilla launched a new Firefox add-on Facebook container that opens Facebook in an isolated blue screen container that cut’s of the tracking the data.

Mark Zuckerberg says lawmakers that we didn’t do enough to prevent these tools from being used for harm. It was my mistake, and I’m sorry.

The minimum reward starting from $500 and the maximum reward is $40,000 and it will be determined based on a variety of factors, including (but not limited to) impact, data exposure, number of affected users and other factors.

To report a potential data Abuse Bounty facebook set’s minimum criteria “10,000 or more Facebook users affected is our initial minimum for rewarding issues”.

Zuckerberg said to House committee that We’re in the process of investigating every app that had access to a large amount of information before we locked down our platform in 2014. If we detect suspicious activity we’ll ban them and tell everyone affected.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Zoom Workplace Apps Flaws Allow Hackers to Gain Elevated Access

Zoom has released multiple security bulletins addressing seven newly discovered vulnerabilities in Zoom Workplace...

PoC Exploit Published for macOS Sandbox Escape Vulnerability (CVE-2025-31258)

Security researchers have disclosed a new macOS sandbox escape vulnerability tracked as CVE-2025-31258, accompanied...

Four Hackers Caught Exploiting Old Routers as Proxy Servers

U.S. authorities unsealed charges against four foreign nationals accused of operating a global cybercrime...

F5 BIG-IP Vulnerability Allows Remote Command Execution

Critical security vulnerability in F5 BIG-IP systems has been discovered that allows authenticated administrators...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Phishing Campaign Uses Blob URLs to Bypass Email Security and Avoid Detection

Cybersecurity researchers at Cofense Intelligence have identified a sophisticated phishing tactic leveraging Blob URIs...

UK Government to Shift Away from Passwords in New Security Move

UK government has unveiled plans to implement passkey technology across its digital services later...

New Spam Campaign Leverages Remote Monitoring Tools to Exploit Organizations

A sophisticated spam campaign targeting Portuguese-speaking users in Brazil has been uncovered by Cisco...