> I would be interested what bounties they would pay
> for operation Аврора or for a botnet of say 1M host.
Reward amounts are public; for example, here are the rules for the web
app program:
http://www.google.com/about/appsecurity/reward-program/
Neither malware on user machines nor attacking e
On Wed, Nov 28, 2012 at 6:23 AM, Georgi Guninski wrote:
> On Tue, Nov 27, 2012 at 10:32:16PM -0800, Dan Kaminsky wrote:
> > > One Google employee responds to another Google employee about Google
> > > stuff...
> > >
> >
> > It's almost like security people at Google have been security people for
>
On Tue, Nov 27, 2012 at 10:32:16PM -0800, Dan Kaminsky wrote:
> > One Google employee responds to another Google employee about Google
> > stuff...
> >
>
> It's almost like security people at Google have been security people for a
> very long time, and are given a redonkulously long leash ;)
>
>
> One Google employee responds to another Google employee about Google
> stuff...
>
It's almost like security people at Google have been security people for a
very long time, and are given a redonkulously long leash ;)
--Dan
___
Full-Disclosure - We bel
On Mon, Nov 26, 2012 at 06:48:17PM +0100, Robert Święcki wrote:
> On Mon, Nov 26, 2012 at 7:17 AM, Michal Zalewski wrote:
> >> His question seemed pretty clear to me. As indicated in the article he
> >> linked to, Google apparently raised their bounty/reward. He's asking if
> >> something happened
In fact, Yahoo!'s InfoSec team is called The Paranoids even outside Y! .
t
Sent from whatever device will keep us from debating which one is better.
On Nov 26, 2012, at 2:37 PM, Nick Boyce wrote:
> On Sat, Nov 24, 2012 at 3:28 PM, Georgi Guninski
> wrote:
>
>> http://www.theregister.co.uk/
On Sat, Nov 24, 2012 at 3:28 PM, Georgi Guninski wrote:
> http://www.theregister.co.uk/2012/11/23/mystery_chrome_0_day/
> >... but that was before Google began offering up to $60,000 in bug
> > bounties
[...]
> Did I miss a major malware related to their warez?
>
> Or are they just paranoid?
Of
On Mon, Nov 26, 2012 at 7:17 AM, Michal Zalewski wrote:
>> His question seemed pretty clear to me. As indicated in the article he
>> linked to, Google apparently raised their bounty/reward. He's asking if
>> something happened to one of their products to cause that, or if they're
>> just paranoid
FYI, the main vendors offering bug bounty programs recently had an
interesting discussion in the OWASP AppSecUSA 2012 conference
http://vimeo.com/53947419
Cheers,
Guifre.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-dis
> His question seemed pretty clear to me. As indicated in the article he
> linked to, Google apparently raised their bounty/reward. He's asking if
> something happened to one of their products to cause that, or if they're
> just paranoid (and maybe expecting something to happen to one of their
> pr
His question seemed pretty clear to me. As indicated in the article he
linked to, Google apparently raised their bounty/reward. He's asking if
something happened to one of their products to cause that, or if they're
just paranoid (and maybe expecting something to happen to one of their
products).
I couldn't quite parse out your question?
Cheers
Chris
On Sat, Nov 24, 2012 at 7:28 AM, Georgi Guninski wrote:
> http://www.theregister.co.uk/2012/11/23/mystery_chrome_0_day/
> >... but that was before Google began offering up to $60,000 in bug
> bounties for the low-down on most serious, remot
http://www.theregister.co.uk/2012/11/23/mystery_chrome_0_day/
>... but that was before Google began offering up to $60,000 in bug bounties
>for the low-down on most serious, remotely exploitable bugs in its Chrome web
>browser software.
Did I miss a major malware related to their warez?
Or are
13 matches
Mail list logo
