Security firm offers reward for info on bugs.
Security firm
Avast Software
, producer of the popular
avast!
free anti-virus solution, has announced a bug bounty programme to encourage researchers to responsibly report the vulnerabilities they identify in the company’s security products.
Avast
is interested in hearing about vulnerabilities that may lead to remote code execution, local privilege escalation, denial-of-service, sandbox escapes, and certain scanner bypasses, and is offering rewards starting from $200, up to a maximum of $5,000 for the more critical remote code execution vulnerabilities.
Large firms including
Mozilla
,
Facebook
,
Google
and
PayPal
are among those who already offer rewards to researchers who report flaws in their software. However,
Avast
is believed to be among the first security vendors to launch such a programme.
More details are available on the
Avast
blog
.
Posted on 25 January 2013 by
Virus Bulletin
Leave a Reply