Huawei has just announced a program that endorses its commitment to security on its devices. According to vulnerability testing specialists, during an invitation-only event in Germany, the Asian company announced a bounty program for any hacker who finds security vulnerabilities in any of the company’s Android smartphones.
Needless to say, it won’t be an easy task to earn one of these rewards. The higher amount will be granted to hackers who manage to find remote access methods to a device without the need for interaction from the targeted user, so they really need to make great finds to be rewarded by Huawei.
Through her Twitter account, user Azeria, who was one of the few people invited to the event, leaked a picture with Huawei’s reward chart, where we can see that the maximum reward set by the company is $200k USD.
While this sounds great, not everyone can compete for one of these rewards, as it is necessary to have received the invitation from the company to participate in this bounty program. In case of having not received the invitation, a hacker trying to compromise a Huawei device could face legal consequences of the company, mention the experts in vulnerability testing.
This is a good idea from the Chinese technology company, mention members of the cybersecurity community. Not only because it’s the first time Huawei has decided to follow the example of other technology companies that offer generous rewards for finding security flaws in their products, but also being an invitation-only event, ignites the interest of potential participants and interest in Huawei. Needless to say, Huawei faces a complex future after President Trump’s administration blacklisted the company, arguing national security reasons. The company is looking for a way to prove that it can face any security risk.
According to vulnerability testing specialists from the International Institute of Cyber Security (IICS), other companies, such as Google, offer rewards ranging from $100 USD (bugs residing in low-priority apps) to $100k USD for reports of vulnerabilities in deployments such as Google Cloud; the biggest reward set in one of these programs belongs to Apple, which offers $1M USD to anyone who can find a specific way to hack an iPhone.