07-31-2011, 03:19 AM
Good new for internet security researchers and whitehat hackers, here's another chance to make some cash by doing what you love to do. They are offering up to $500 for a typical security vulnerability.
Facebook's security bug bounty program offers you monetary bounty for helping them find new security bugs that could compromise the privacy or integraty of their huge user data.
More details here:- https://www.facebook.com/whitehat/bounty/
You're eligible if you:-
Give them a reasonable time to respond to your report before making any information public and make a good faith effort to avoid privacy violations, destruction of data and interruption or degradation of our service during your research.
Are the first person to responsibly disclose the bug
Report a bug that could compromise the integrity or privacy of Facebook user data, such as:
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF/XSRF)
Remote Code Injection
Reside in a country not under any current U.S. Sanctions (e.g., North Korea, Libya, Cuba, etc.)
The following bugs aren’t eligible for a bounty:
Security bugs in third-party applications (e.g., http://apps.facebook.com/[app_name])
Security bugs in third-party websites that integrate with Facebook
Security bugs in Facebook’s corporate infrastructure
Denial of Service Vulnerabilities
Spam or Social Engineering techniques
It's about time to book the facebook bugs.
Facebook's security bug bounty program offers you monetary bounty for helping them find new security bugs that could compromise the privacy or integraty of their huge user data.
More details here:- https://www.facebook.com/whitehat/bounty/
You're eligible if you:-
Give them a reasonable time to respond to your report before making any information public and make a good faith effort to avoid privacy violations, destruction of data and interruption or degradation of our service during your research.
Are the first person to responsibly disclose the bug
Report a bug that could compromise the integrity or privacy of Facebook user data, such as:
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF/XSRF)
Remote Code Injection
Reside in a country not under any current U.S. Sanctions (e.g., North Korea, Libya, Cuba, etc.)
The following bugs aren’t eligible for a bounty:
Security bugs in third-party applications (e.g., http://apps.facebook.com/[app_name])
Security bugs in third-party websites that integrate with Facebook
Security bugs in Facebook’s corporate infrastructure
Denial of Service Vulnerabilities
Spam or Social Engineering techniques
It's about time to book the facebook bugs.