HackerOne

Qualcomm Launches Bug Bounty Program

Qualcomm Launches Bug Bounty Program

Are you a fan of drones, droids, and VR? Then you’re a fan of Qualcomm. Qualcomm is the world leader in 3G and 4G technologies helping power your smartphones, among other things, and today we’re excited to announce the launch of their invite-only bug bounty program on HackerOne.

Qualcomm plans to reward hackers up to $15,000 for improving the security of the Qualcomm Snapdragon family of processors, LTE modems and related technologies.

For additional details on Qualcomm’s invitation only program check out their security page and their official press release below.

Qualcomm Announces Launch of Bounty Program, offering up to $15,000 USD for the Discovery of Vulnerabilities

First announced vulnerability rewards program to be offered by a major semiconductor vendor; will be administered by HackerOne

SAN DIEGO — November 17, 2016 — Qualcomm Incorporated (NASDAQ: QCOM) today announced that its subsidiary, Qualcomm Technologies, Inc. (QTI), is launching its vulnerability rewards program designed to expand collaboration with invited white hat hackers who improve the security of the Qualcomm® SnapdragonTM family of processors, LTE modems and related technologies. The program is the first of its kind to be announced by a major silicon vendor, and will be administered in collaboration with vulnerability coordination platform HackerOne, offering rewards of up to $15,000 USD per vulnerability as well as recognition in either the QTI Product Security or the Code Aurora Forum Hall of Fame, depending on the nature of the submission.

“We have always been proud of our collaborative relationship with the security research community. Over the years, researchers have helped us improve the security of our products by reporting vulnerabilities directly to us,” said Alex Gantman, vice president of engineering, Qualcomm Technologies. “Although the vast majority of security improvements in our products come from our internal efforts, a vulnerability rewards program represents a meaningful part of our broader security efforts.”

“The most security conscious organizations embrace the hacker community's critical role in a comprehensive security strategy,” said Alex Rice, CTO, HackerOne. “With Qualcomm Technologies’ vulnerability rewards program they will continue to build vital relationships with the external security researcher community and supplement the great work their internal security team is doing.”

Over 40 security researchers who have made vulnerability disclosures in the past will be invited to initially participate. The program will be administered by HackerOne and participation details are available at https://hackerone.com/qualcomm. The vulnerability rewards program is effective immediately.

 

 


HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty program solutions encompass vulnerability assessment, crowdsourced testing and responsible disclosure management. Discover more about our security testing solutions or Contact Us today.

The 8th Annual Hacker-Powered Security Report

HPSR blog ad image