Facebook Bug Bounty Program Makes Largest Payout To Date

Facebook recently made its largest bug bounty payout to date -- $33,500, according to ZDNet -- to Brazilian computer engineer Reginaldo Silva for his discovery of a vulnerability during the social network’s usage of OpenID that had the potential of enabling a hacker to take full control of one of its servers.

NoBug650Facebook recently made its largest bug bounty payout to date — $33,500, according to ZDNet — to Brazilian computer engineer Reginaldo Silva for his discovery of a vulnerability during the social network’s usage of OpenID that had the potential of enabling a hacker to take full control of one of its servers.

According to ZDNet, Facebook uses OpenID providers to verify users’ identities when they forget their passwords for the social network.

Facebook wrote in a post on its Facebook Bug Bounty page:

We recently awarded our biggest bug bounty payout ever, and since it’s a great validation of the program we’ve been building and running since 2011, we thought we’d take a few minutes to describe the issue and our response.

In November, we were reading through incoming bug reports and came across a claim we wanted to investigate right away: arbitrary file reads.

AW+

WORK SMARTER - LEARN, GROW AND BE INSPIRED.

Spring Special

Save 30% Off an ADWEEK Subscription Today!

View Your Options

Already a member? Sign in