Don't miss the latest stories
Google Rewards High Schooler US$10,000 For Finding Data-Leaking Loophole
By Mikelle Leow, 11 Aug 2017
Composite image by DesignTAXI. Google logo via Wikimedia Commons, padlock icon via Wikimedia Commons
Need hard and fast cash? You might have to be as alert as a certain Uruguayan high school student.
Google has awarded Ezequiel Pereira a US$10,000 bug bounty for spotting a loophole that could allow the company’s back-end servers to grant attackers access to private data.
“On 11 July , I was bored, so I tried to find some bug at Google,” the student says. He toyed around with the website and soon discovered, while equipped with popular vulnerability scanner Burp Suite, that one of Google’s security measures wasn’t properly implemented.
“At that point I stopped poking at the website and reported the issue right away, without even thinking of a better way to show the vulnerability than with Burp.”
Much to Pereira’s surprise, Google’s security team replied within a matter of a few hours. Apart from thanking the independent cyber security researcher for saving the company from possibly losing millions of dollars, the panel also decided to issue him a reward.
Pereira received his prize on 4 August 2017 for finding an answer that was nearly impossible to google.
Check out how the entire technical process went by reading Pereira’s full blog post over at Google Sites.
Image via Google Sites
[via The Next Web, images via various sources]
More related news
Also check out these recent news