If you have a knack for finding bugs or vulnerabilities within programs, services and applications you may be interested to know that this week Dropbox has announced their new bug bounty program.
Following on from previous promotions to offer cash for finding legitimate bugs and vulnerabilities within their applications and software. Dropbox is offering a minimum bounty of $216 for qualifying bugs, while the maximum bounty Dropbox have paid is $4913.
Dropbox has partnered with HackerOne to eliminate vulnerabilities that could otherwise be overlooked. Dropbox explains a little more:
“Protecting the privacy and security of our users’ information is a top priority for us at Dropbox. In addition to hiring world class experts, we believe it’s important to get all the help we can from the security research community, too. That’s why we’re excited to announce that starting today, we’ll be recognizing security researchers for their effort through a bug bounty program with HackerOne.
Bug bounties (or vulnerability rewards programs) are used by many leading companies to improve the security of their products. These programs provide an incentive for researchers to responsibly disclose software bugs, centralize reporting streams, and ultimately allow security teams to leverage the external community to help keep users safe”
For more information on the new Dropbox bug bounty program jump over to the Dropbox Blog website for details and links to the HackerOne website to reports any vulnerabilities you might have found within the Dropbox service.
Source: HackerOne