In a show of either confidence in its own security or eagerness to ensure the integrity of its system, developer AgileBits has quadrupled the highest bounty for finding bugs within its password manager 1Password to a whopping $100,000. While 1Password managed to escape Cloudflare’s Cloudbleed fault last month, despite using the system, the new bounty suggests an imperative on behalf of AgileBits not to get caught out in a similar way.
“We believe that we’ve designed and built an extremely secure password management system,” Jeffrey Goldberg of AgileBits writes. “We wouldn’t be offering it to people otherwise. But we know that we – like everyone else – may have blind spots. That is why we very much encourage outside researchers to hunt for security bugs. Today we are upping that encouragement by raising the top reward in our bug bounty program.”
“Our 1Password bug bounty program offers tiered rewards for bug identification, starting at $100,” Goldberg explains. “Our top prize goes to anyone who can obtain and decrypt some bad poetry (in particular, a horrible haiku) stored in a 1Password vault that researchers should not have access to. We are raising the reward for that from $25,000 to $100,000. (All rewards are listed in US dollars, as those are easier to transfer than hundreds or thousands of Canadian dollars worth of maple syrup.) This, it turns out, makes it the highest bounty available on Bugcrowd.”
Here’s how to get involved:
The 1Password Bugcrowd campaign is on-going until further notice.
I must admit I'm fairly new to One Piece, as my Son has been mad…
If you are a fan of rally driving and VR gaming? Then today is a…
AMD has released a new driver, and if you're eager to play or are already…
While I'm not familiar with the Bilibili streaming platform, it was the source of a…
As Computex 2024 approaches, the tech industry buzzes with anticipation for a series of high-profile…
MSI, a key player in the graphics card market, appears to be shifting its focus…