OnePlus To Launch Its Bug Bounty Program With Up To Rs. 500,000 Reward
Aadhya Khatri
Back in November, OnePlus announced yet another data breach. As a result, the company promised on a bounty program to strengthen its system’s security
- Six Best Smartphones Under 40,000 In India: Price & Detailed Review
- Looking For A 5G Phone In India? Check Out This List
- OnePlus Seemingly Found A New Way To Hide The Selfie Camera
Back in November, OnePlus announced yet another data breach. As a result, the company promised a solution to strengthen its system’s security. Many other major tech firms have the same program and it does bring some good results. A few days ago, OnePlus finally launched its bug bounty program to encourage the public to join in to secure OnePlus’s hardware.
The program has its own website where users can create accounts and submit the bugs they found. There is also a leaderboard with three spots for the top three contributors right on the main page.
OnePlus has also made public the reward, divided into five tiers:
- The bounty hunter will get $7,000 (around Rs. 497,896) for the special cases.
- For critical cases, the one found them will be entitled to an amount of reward ranging from $750 to $1,500 (approximately Rs. 53,000 to Rs. 106,000).
- The high cases will bring the hunters from $250 to $750 (Rs. 17,000 to Rs. 53,000).
- The reward for medium cases is from $100 to $250 (Rs. 7,000 to Rs. 17,000).
- The lowest tier has the reward from $50 to $100 (Rs. 3,500 to Rs. 7,100)
However, OnePlus does not elaborate on the criteria it uses to categorize bugs. All it says is the reward will depend on the potential impact on the business and the severity of the vulnerability.
When the second breach was revealed, OnePlus also said that it would collaborate with a famous security platform. It turns out that the company it mentioned is HackerOne, a bug bounty startup. The partnership will come in the form of a pilot program with HackerOne’s researchers invited to test OnePlus’s systems.
The second breach has exposed contact numbers, shipping addresses, and names of some customers. However, the account and payment information is still safe. The number of affected customers was not revealed.