Facebook now has a loyalty program for its bug bounty hunters on its platform
Now, the company is bringing an intriguing update to it with a loyalty program calledHacker Plus, which will reward security researchers to keep finding bugs in the social networksplatform.
Based on that score, theyll be placed in a league ranging from bronze to diamond, and that will determine how much bonus theyll earn when they find their next bug.
The company is also awarding anyone who reaches the Diamond tier before the year-end with an Oculus Quest 2 virtual reality headset.
Dan Gurfinkel, the security engineering manager at Facebook, said that this program will encourage community building and quality bug submissions.
Hacker Plus is designed to help build community among the researchers who participate in our bug bounty program, in addition to incentivizing quality reporting. Researchers can now earn profile badges when they advance to a higher league, participate in private bounties, or receive a certain number of bounty awards.
Facebooks top tier rewards are enticing for a security researcher: more money on finding bugs, access to stress test upcoming products, tours to Facebook events and campus, and access to top company security people.
However, a lot of onus lies on Facebook to judge fairly to determine whats noise and whats quality bug reports or submissions, and the companys decision can lead to disputes or unrest in the security researcher community.
Also, it might put pressure on researchers to keep working just on Facebooks platform to find bugs to maintain their league.
Along with this, the social network is also releasingFacebook Bug Description Language , a tool for researchers to describe how Facebook engineers can reproduce bugs and also how much impact it might have on the system.
We use cookies and analyse traffic to this site. By continuing to use this site, closing this banner, or clicking "I Agree", you agree to the use of cookies. Read our privacy poplicy for more information.