Kaspersky Lab boosts bug bounty program with new reward of $100,000 - in frame of its Global Transparency Initiative

Information Technology Press Releases Wednesday April 4, 2018 17:05
Bangkok--4 Apr--Kaspersky Lab

As part of its Global Transparency Initiative, Kaspersky Lab is extending its successful bug bounty program to include rewards of up to $100,000 for the discovery and coordinated disclosure of severe vulnerabilities in some of its leading products. The opportunity to get this bounty is available to all members of the famous HackerOne platform, Kaspersky Lab's partner for the Bug Bounty initiative. This is a 20-fold increase on existing rewards, and is evidence of the company's commitment to ensuring the complete integrity of its products and protection for customers.

The top reward is available for the discovery of bugs that enable remote code execution via the product database update channel, with the launch of malware code taking place silently from the user in the product's high privilege process and being able to survive the reboot of the system. Vulnerabilities allowing other types of remote code execution will be awarded bounties ranging from $5000 to $20000 (depending on the level of complexity of a given vulnerability). Bugs allowing local privilege escalation, or leading to sensitive data disclosure will also be awarded bounty payouts.

Rewards are available for the discovery of previously unknown vulnerabilities in the following products: Kaspersky Internet Security 2019 (the most recent beta) and Kaspersky Endpoint Security 11 (the most recent beta), running on Desktop Windows version 8.1 or higher, with the most recent updates installed.

Further details of requirements and eligibility are available here.
https://hackerone.com/kaspersky

Commenting on the increase in the bug bounty rewards, Eugene Kaspersky, CEO of Kaspersky Lab, said: "Finding and fixing bugs is a priority for us as a software company. We invite security researchers to make sure there are no vulnerabilities in our products. The immunity of our code and highest levels of protection that we offer customers is a core principal of our business – and a fundamental pillar of our Global Transparency Initiative."

The company's bug bounty program, launched in 2016, encourages independent security researchers to supplement the company's own work in vulnerability detection and mitigation. The program has already led to more than 70 bug reports related to Kaspersky Lab products and services being resolved and thus making them even more secure.

The company's Global Transparency Initiative, announced on 23 October 2017 is designed to engage the broader information security community and other stakeholders in validating and verifying Kaspersky Lab's products, internal processes, and business operations, as well as introducing additional accountability mechanisms by which the company can further demonstrate that it addresses any security issues promptly and thoroughly.


Latest Press Release

SiS joined forces with Interlink Telecom introducing cloud service business, aiming to become a leading cloud service provider within three years

Capitalizing on its strength in customization that allows organizations to fine-tune their own cloud systems and its unique business model that offers solutions and services through over 2,000 business partners, targeting enterprise markets SiS...

Master of Eternity สงครามข้ามจักรวาล อัพเดท Frame Arms Girl แล้วจ้า

ตัวละครจาก Frame Arms Girl บุก Master of Eternity แล้ววันนี้ เปิดศึกลุยเลย ทั้งบน iOS และ Android แฟนๆ Frame Arms Girl เฮลั่น Master of Eternity อัพเดท FA Girl แล้วจ้า เกมหุ่นยนต์วางแผนการรบ SRPG จาก Nexon Korea บริษัทในเครือ NEXON Co., Ltd. ("Nexon")...

Uniview Opens Manufacturing Base in China and Branch Office in South Korea

Uniview, the global pioneer and leader of IP video surveillance, is committing to providing high-quality and professional services to global customers. Uniview has a nearly 100% growth rate in overseas markets, covers over 145 regions and countries, and...

BLR Airport Launches Self-Bag-Drop

Just 45 seconds! This will be the time taken to complete your baggage check-in at the Kempegowda International Airport, Bengaluru. The Bangalore International Airport Limited - operator of the BLR Airport - has, once more, raised the bar for passenger...

Element AI Announces Strategic Partnerships with GIC, SGInnovate, and Singapore Management University

- Element AI expands its successful collaborative approach and existing ties to Singapore with new agreements to develop cutting edge products in the financial sector, enhance local talent, scale commercial Artificial Intelligence solutions, and embark...

Related Topics