author photo
By SecureWorld News Team
Fri | Aug 25, 2017 | 8:42 AM PDT

How about an instant payday of 500k? You won't even need a lottery ticket.

You will, however, need to create and reveal something other security researchers have not.

Bug bounty company ZERODIUM says it is looking for, "Original and previously unreported zero-day research."

And this week the company announced some massive new bug bounties specifically for mobile devices and some of the apps that run on them including encrypted messaging apps like Facebook Messenger, WhatsApp, iMessage and WeChat, among others. 

Here are the new six figure bug bounties: 

Think these numbers are big? The company also offers standing seven figure bug bounties for security researchers. Here's one example:

'$1,500,000 for Apple iOS Remote Jailbreak + Persistence (Zero Click). Must be remote and without any user interaction.'

With money like this on the table, it makes you wonder who is paying the bills here.

The company says this much on its website: "ZERODIUM customers are major corporations in defense, technology, and finance, in need of advanced zero-day protection, as well as government organizations in need of specific and tailored cybersecurity capabilities."

Interesting, isn't it? Defense, technology, finance and government. But which companies and which governments? It would probably take a successful zero-day exploit (or a few!) to find out.

Now, back to the bounties: if you have some extra time on your hands, here are the high value zero-day exploits they'll pay for.

Speaking of research, as the Marcus Hutchins case works its way through the court system, check out SecureWorld contributor and security researcher Chris Roberts and his view on the Hutchins situation. It is a great weekend read! 

 

 

Tags: Cybersecurity,
Comments