Facebook says they paid Rs 4.84 crore to researchers in India as part of its bug bounty program: Facebook has paid a huge sum of Rs 4.84 crore to the Indian researchers for its bug bounty program. This is the highest amount paid till now by the social networking site.
The technical manager on the Facebook Bug Bounty team, Adam Ruddermann, said that India has been in Facebook’s bug bounty program since it was launched in 2011 and apart from that, India has 205 researchers, which is the largest population of the participating security researchers in the program. According to Ruddermann, India holds the top spot for most bounties paid which amounts to Rs 48.4 million.
This bug bounty program was launched in 2011 and since then Facebook has received more than 2400 valid submissions. In this program, Facebook rewards those researchers who report security bugs to them, identify vulnerabilities in Facebbok’s service or it informs the site about the infrastructure which poses security or privacy risk and up till now Facebook has rewarded over USD 4.3 million to 800 plus researchers all over the globe.
In 2015, Facebook witnessed an increase by 38 per cent in its bug bounty submissions when 102 bugs were reported to the team.
From 5,543 researchers of 127 countries, Facebook received around 13,233 total submissions and it paid a sum of USD 936,000 to 216 researchers who gave 526 valid reports. Out of all the countries, India, Egypt and Trinidad and Tobago were the ones who received the highest reward from the social networking site.
Ruddermann also mentioned that high-impact bugs which are being received frequently from India reflects the country’s technical capabilities and growing sophistication of its engineering schools and cyber security programs.
He explained that after the recognizing a valid bug, the company looks at the probable impact that it can cause, what might go wrong because of it and tries to find out the expected victims.
The goal of this program, as stated by Ruddermann, is to protect Facebook’s users from the bugs and this program also tries to find out the resources and technical skills which would be required for a successful attack.