Google offers $1 million reward to hackers who exploit Chrome

Full details are here:<p><a href="http://blog.chromium.org/2012/02/pwnium-rewards-for-exploits.html" rel="nofollow">http://blog.chromium.org/2012/02/pwnium-rewards-for-exploits...</a><p>Snippet of what reward for what sort of hack:<p>$60,000 - “Full Chrome exploit”: Chrome / Win7 local OS user account persistence using only bugs in Chrome itself.<p>$40,000 - “Partial Chrome exploit”: Chrome / Win7 local OS user account persistence using at least one bug in Chrome itself, plus other bugs. For example, a WebKit bug combined with a Windows sandbox bug.<p>$20,000 - “Consolation reward, Flash / Windows / other”: Chrome / Win7 local OS user account persistence that does not use bugs in Chrome. For example, bugs in one or more of Flash, Windows or a driver. These exploits are not specific to Chrome and will be a threat to users of any web browser. Although not specifically Chrome’s issue, we’ve decided to offer consolation prizes because these findings still help us toward our mission of making the entire web safer.

The title is so misleading its just funny.<p>I could propose to offer 1000 BILLIONS to anyone who exploit chrome and give $1 per exploit too (yeah im not Google so it's $1 for me).<p>I think Google is going that because security companies request such amounts for exploits before Pwn2Own to Google so that Google doesn't look bad.<p>And Google didn't take VUPEN's offer on all bugs, so VUPEN said they're going to go to Pwn2Own and break Chrome with their known exploits. So Google wants to come out as the good guy.<p>Yay for politics.

Anyone know what the actual street value of those vulns would be if you have the right contacts?<p>Paging tptacek, paging tptacek to the thread...

Kudos to Google for this contest, they took the extra mile in protecting its users.

Will google ask apple money for pointing out cookie logic vulnerability on safari ios?<p>Tum dum tisss