• Hacker Login
  • Customer Login
  • Contact Us
Engagements
  • Hacker Login
  • Customer Login
  • Contact Us
Engagements Talk to an Expert
  • Platform & Solutions
    • Overview
      • Bugcrowd Platform
      • Engineered Triage
      • CrowdMatch™
      • Integrations
      • Vulnerability Rating Taxonomy
    • Products
      • Penetration Testing
        • Pen Test as a Service
        • Continuous Attack Surface Pen Testing
        • AI Pen Test
        • Web Application Pen Test
        • Mobile App Pen Test
        • Network Pen Test
        • API Pen Test
        • IoT Pen Test
        • Cloud Pen Test
        • Social Engineering Pen Test
      • Red Team as a Service
      • AI Bias Assessment
      • Bug Bounty
      • Vulnerability Disclosure
      • Attack Surface Management
    • Solutions
      • AI Safety & Security
      • Application and Cloud Security
      • Vulnerability Intake and Coordination
      • IoT and Web3
      • Marketplace Apps
      • Mergers & Acquisitions
      • Social Engineering
      • By Industries
        • Financial Services
        • Healthcare
        • Retail
        • Automotive
        • Technology
        • Government
        • Security Companies
  • Why Bugcrowd
    • Why Bugcrowd
      • Why Crowdsourcing is Better
      • The Bugcrowd Difference
      • Our Customers
  • Our Customers
  • Resources
    • Resource Library
      • All Resources
      • Documentation
      • Blog
      • Case Studies
      • Glossary
      • FAQ
      • Code of Conduct
      • Platform Behavior Standards
      • Webinars
      • Events
  • Company
    • About Us
      • About Us
      • Our Customers
      • Leadership
      • Partners
      • Careers
      • Press Releases
      • Contact Us
      • In the News
      • Events
      • Blog
      • Diversity & Inclusion
      • Compliance and Security
  • For Hackers
    • Hack with us
      • Engagements
      • CrowdStream
      • Start Hacking
      • Help Wanted
      • FAQs
    • Learn with us
      • Hacker Docs
      • Bugcrowd University
      • Community
      • Leaderboard
Cybersecurity News

Bugcrowd Founder on Google Increasing Android Bounty to $1.5 Million

November 25, 2019 | By Bugcrowd
Back to blog

Last week, Google announced a bug bounty reward of $1 million to anyone who could carry out a full chain remote code execution exploit on the Titan M secure chip within Pixel devices (this comes shortly after Apple launched its own $1 million bounty at Black Hat USA this year). On top of that, they’re offering a 50% bonus if the researcher can carry out the hack on a version of Android that’s still in developer preview stages, making the top prize up to $1.5 million if you hadn’t already done the math.

Hackers today have a few options with the bugs they uncover:

  1. Do nothing with bugs they find
  2. Use the exploits themselves
  3. Sell to an offensive buyer or get a job for one
  4. Sell to the defensive buyer or get a job with one.

Casey Ellis, Bugcrowd founder, chairman, and CTO weighs in the motivations and increasing arms race for these bugs:

When it comes to Google’s updated bug bounty reward program, it’s important to note that similar to Apple’s bug bounty program, the skills needed to find these types of vulnerabilities in Google devices are rare and often tied up in the offensive market–which is why the payout is so high.

By upping the incentive to hackers, Google is making bug hunting for them more attractive, especially to those that might teeter the line between whitehat and blackhat. This also gives hackers who previously could have sold their discoveries to brokers like Zerodium or to international governments more incentive to help with the problem of defense, instead of leaving users vulnerable as they support the offensive market.

At Bugcrowd, we love seeing so many established tech giants working with the whitehat hacker community, upping their incentives and competing head-to-head to match the effort that goes into finding these bugs, in an effort to create more secure products.

Interested in running a program? Learn more about Bugcrowd Bug Bounty programs here: https://www.bugcrowd.com/products/bug-bounty/ 

Tags:
  • Android
  • Apple
  • bug bounty
  • Google
  • researcher rewards
  • whitehat

Latest Blog Posts

Welcome Umesh Shankar to the Bugcrowd Advisory Board

Learn More

Access Control vs Account Takeover: What Bug Bounty Hunters Need to Know

Learn More

Making a difference with a suicide prevention bot

Learn More

More from the blog

Welcome Umesh Shankar to the Bugcrowd Advisory Board
Bugcrowd News

Welcome Umesh Shankar to the Bugcrowd Advisory Board

By Erica Azad, Jul 07, 2025
Read More
Access Control vs Account Takeover: What Bug Bounty Hunters Need to Know
LevelUpX

Access Control vs Account Takeover: What Bug Bounty Hunters Need to Know

By Guest Post, Jul 02, 2025
Read More
Making a difference with a suicide prevention bot
Hacker Resources

Making a difference with a suicide prevention bot

By Guest Post, Jul 02, 2025
Read More

Subscribe for updates

Products

  • Penetration Testing
    • Pen Test as a Service
    • Continuous Attack Surface Pen Testing
    • Web Application Pen Test
    • Mobile App Pen Test
    • Network Pen Test
    • API Pen Test
    • IoT Pen Test
    • Cloud Pen Test
    • Social Engineering Pen Test
  • Red Team as a Service
  • Bug Bounty
  • Vulnerability Disclosure
  • Attack Surface Management

Use cases

  • AI Safety & Security
  • Application and Cloud Security
  • Vulnerability Intake
  • IoT and Web3
  • Marketplace Apps
  • Mergers & Acquisitions
  • Social Engineering

Industries

  • Financial Services
  • Healthcare
  • Retail
  • Automotive
  • Technology
  • Government
  • Security

Why Bugcrowd

  • Why Crowdsourcing is Better
  • The Bugcrowd Difference
  • Our Customers

Company

  • Careers
  • Leadership
  • Partners
  • Press Releases
  • In the News
  • Contact Us

For Hackers

  • Programs
  • CrowdStream
  • Bug Bounty List
  • Start Hacking
  • FAQs
  • Hacker Docs
  • Bugcrowd University
  • Leaderboard
social-icon social-icon social-icon social-icon social-icon
footer-logo
Contact Get a Demo
  • Copyright ©2025 Bugcrowd
  • Security
  • Terms & Conditions
  • Privacy Policy
  • Do Not Sell or Share My Information
  • General Data Protection Regulation
popup-logo