Sign in with
Sign up | Sign in

Hack Google's Chrome Browser, Get Up to $60,000 USD

By - Source: Google | B 13 comments

Google is offering up to $1 million in prizes for successfully hacking the Chrome web browser.

On Monday Google said it is now shelling out up to $1 million worth of rewards for anyone who can crack open its Chrome web browser.

According to Chris Evans and Justin Schuh of the Google Chrome Security Team, the biggest cash prize of $60,000 will go to those who discover a "full Chrome exploit" using bugs found only within Chrome itself. $40,000 will be awarded to those who perform a partial Chrome exploit using at least one Chrome bug plus other OS bugs (a WebKit bug combined with a Windows sandbox bug, for example).

"Originally, our plan was to sponsor as part of this year’s Pwn2Own competition," the Google Chrome Security team said on Monday. "Unfortunately, we decided to withdraw our sponsorship when we discovered that contestants are permitted to enter Pwn2Own without having to reveal full exploits (or even all of the bugs used!) to vendors. Full exploits have been handed over in previous years, but it’s an explicit non-requirement in this year’s contest, and that’s worrisome."

Thus, Google is now offering rewards for hacking its web browser outside the Pwn2Own competition. In addition to the Full Chrome Exploit and Partial Chrome Exploit categories, Google will also offer $20,000 to those who fall under the "Consolation reward, Flash / Windows / other" category, or rather, those who discover bugs that could threaten users in any browser including bugs in one or more of Flash, Windows or a device driver.

The team said Google is offering consolation prizes because these findings help propel the company's overall mission to make the entire web safer to crawl no matter what browser is used.

"We will issue multiple rewards per category, up to the $1 million limit, on a first-come-first served basis," the blog reads. "There is no splitting of winnings or 'winner takes all.' We require each set of exploit bugs to be reliable, fully functional end to end, disjoint, of critical impact, present in the latest versions and genuinely '0-day,' i.e. not known to us or previously shared with third parties. Contestant’s exploits must be submitted to and judged by Google before being submitted anywhere else."

All winners will also receive a Chromebook, the team said.

Display 13 Comments.
This thread is closed for comments
Top Comments
  • 13 Hide
    RADIO_ACTIVE , February 28, 2012 9:08 PM
    Anon jump on this and get funded lol
  • 10 Hide
    amstech , February 28, 2012 9:22 PM
    Not original but a good way to make your software more secure.
    It will ALWAYS be breachable though, code is transparent.
Other Comments
  • 13 Hide
    RADIO_ACTIVE , February 28, 2012 9:08 PM
    Anon jump on this and get funded lol
  • 10 Hide
    amstech , February 28, 2012 9:22 PM
    Not original but a good way to make your software more secure.
    It will ALWAYS be breachable though, code is transparent.
  • 6 Hide
    qhoa1385 , February 28, 2012 9:27 PM
    *Presses F12*
    Profit

    Hahaha
  • 7 Hide
    synd , February 28, 2012 9:40 PM
    Google is doing it right. It's way cheaper for them to do this instead of hiring people long-term.
  • 3 Hide
    __-_-_-__ , February 28, 2012 9:54 PM
    RADIO_ACTIVEAnon jump on this and get funded lol

    +999999999999
  • 1 Hide
    rocknrollz , February 28, 2012 10:22 PM
    RADIO_ACTIVEAnon jump on this and get funded lol


    I really doubt Google will do this in an uncontrolled environment. Yes, they want this to be publicity to show that they have the "safest" browser. But I am sure that when the hacker "if" the hacker gets through they want to know how to patch up the security holes.
  • 5 Hide
    RADIO_ACTIVE , February 28, 2012 10:41 PM
    RockNRollzI really doubt Google will do this in an uncontrolled environment. Yes, they want this to be publicity to show that they have the "safest" browser. But I am sure that when the hacker "if" the hacker gets through they want to know how to patch up the security holes.

    It was a joke... now laugh sir
  • 6 Hide
    pythy , February 29, 2012 12:34 AM
    Quick!! Someone gimme an axe!!
  • 1 Hide
    Hypertraxx , February 29, 2012 1:56 AM
    pythyQuick!! Someone gimme an axe!!

    LOL LMAO,
    Hack ALL the google chromesssss!!
  • 0 Hide
    juncture , February 29, 2012 1:58 AM
    RADIO_ACTIVEAnon jump on this and get funded lol

    I don't think they need the money. Even LulzSec denied a $10,000 reward for hacking a website that also offered a job position at a security firm.
  • 1 Hide
    NuclearShadow , February 29, 2012 7:40 AM
    If I take hacksaw to a computer that is currently running Chrome does that count? Would I have not successfully "hacked" Chrome? I will certainly do more damage than any other hacker. I shall contact Google about this and demand my $60,000.

  • 4 Hide
    joytech22 , February 29, 2012 8:00 AM
    Google: Hack our product and we will pay YOU
    Apple: Hack our product, LAWSUIT :) 

    Just kidding. :p  Or am I..
    Honestly I'm not biased though, but sadly the above is pretty damn true.. lol.
  • 0 Hide
    Tavo_Nova , February 29, 2012 10:22 AM
    damn this is so hot, can i just hack them to pieces instead >.