{"id":240312,"date":"2026-05-06T11:50:00","date_gmt":"2026-05-06T15:50:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/06\/google-will-now-pay-up-to-1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community\/"},"modified":"2026-05-06T11:55:07","modified_gmt":"2026-05-06T15:55:07","slug":"google-will-now-pay-up-to-1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/06\/google-will-now-pay-up-to-1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community\/","title":{"rendered":"Google will now pay up to $1.5 million for finding Android and Chrome security bugs, says it has &#8216;greatly appreciated collaborating with the researcher community&#8217;"},"content":{"rendered":"<p><a href=\"https:\/\/www.techradar.com\/pro\/security\/google-will-now-pay-up-to-usd1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community\">Google will now pay up to $1.5 million for finding Android and Chrome security bugs, says it has &#8216;greatly appreciated collaborating with the researcher community&#8217;<\/a><\/p>\n<p><a href=\"https:\/\/www.techradar.com\/pro\/security\/google-will-now-pay-up-to-usd1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community\">https:\/\/www.techradar.com\/pro\/security\/google-will-now-pay-up-to-usd1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-06 11:50:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.techradar.com\">www.techradar.com<\/a><\/p>\n<ul id=\"elk-37371436-2def-4ae7-9aa8-8a83bddecc16\">\n<li><strong>Google raised rewards to $1.5m for top\u2011tier Android exploits, prioritizing risks beyond AI\u2011detectable flaws<\/strong><\/li>\n<li><strong>Chrome\u2019s program now offers up to $250K for full chain browser exploits, plus bonuses for Miracle Ptr bypasses<\/strong><\/li>\n<li><strong>The company paid $17.1m to researchers in 2025, with lifetime payouts exceeding $81m since 2010<\/strong><\/li>\n<\/ul>\n<p id=\"elk-89c0b648-03f6-49c6-8191-1d03c5b8b6df\">Google is now offering up to $1.5 million in bounty to whoever can find the biggest, baddest, Android exploits &#8211; whereas \u201clesser\u201d exploits &#8211; ones that can be found and reported on with AI, are getting a proportional downgrade.<\/p>\n<p>Google\u2019s engineers announced changes to the company\u2019s Android and Chrome vulnerability rewards programs, saying they will now reward up to $1.5 million to anyone who can find a zero-click full chain Pixel Titan M2 compromise with persistence. Those that find the same bug, sans the persistence part, can expect up to $750,000 in rewards.<\/p>\n<p id=\"elk-89c0b648-03f6-49c6-8191-1d03c5b8b6df-2\">\u201cWe are revising our program scope to emphasize categories that represent the highest risk to our users,\u201d Google said. \u201cWe are also prioritizing categories that remain more challenging for automated AI tooling to find to ensure we reward researchers for their unique skills and talents.\u201d<\/p>\n<p><span class=\"article-continues-below block py-2 text-sm\">Article continues below <\/span><br \/>\n        <span class=\"\n            flex\n            after:content-[''] after:flex-1 after:ml-4 after:my-[0.7rem] after:border-t after:border-solid after:border-t-[#ccc]\n            before:content-[''] before:flex-1 before:mr-4 before:my-[0.7rem] before:border-t before:border-solid before:border-t-[#ccc]\n            font-article-heading pb-0 text-[length:var(--article-river-title--font-size,1em)] uppercase sm:text-[length:var(--article-river-title--font-size,0.875em)] font-bold\n        \"><br \/>\n            You may like<br \/>\n        <\/span><\/p>\n<h2 id=\"overhauling-the-chrome-program-3\">Overhauling the Chrome program<\/h2>\n<p id=\"elk-5c28a411-fdb4-4a55-ac70-48e3056654bf\">Going forward, the Android program will also be more focused on Linux kernel vulnerabilities in components that Google maintains, with the exception of researchers being able to show the flaws could be exploited on an Android device.<\/p>\n<p>Chrome\u2019s bounty program has also gotten an overhaul. Google is now giving up to $250,000 for full chain browser process exploits on the latest operating systems and hardware, and up to $250,128 bonus for a report that successfully exploits an allocation it believes to be protected by Miracle Ptr.<\/p>\n<p>Google\u2019s bug bounty program has paid out record sums last year, BleepingComputer reports. Apparently, it gave $17.1 million to 747 researchers last year, up more&#8230;<\/p>\n<p><a href=\"https:\/\/www.techradar.com\/pro\/security\/google-will-now-pay-up-to-usd1-5-million-for-finding-android-and-chrome-security-bugs-says-it-has-greatly-appreciated-collaborating-with-the-researcher-community\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google will now pay up to $1.5 million for finding Android and Chrome security bugs,&#8230;<\/p>\n","protected":false},"author":1,"featured_media":240313,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cdn.mos.cms.futurecdn.net\/BqHJeHuR6J5gdW5uXsx3Mm-2560-80.jpg","fifu_image_alt":"","footnotes":""},"categories":[46],"tags":[70,72,57,27],"class_list":["post-240312","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-android","tag-google","tag-pixel","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/240312"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=240312"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/240312\/revisions"}],"predecessor-version":[{"id":240314,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/240312\/revisions\/240314"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/240313"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=240312"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=240312"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=240312"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}