San Francisco: Facebook has expanded its bug bounty programme for ethical hackers and security researchers to reward them for valid bug reports in third-party apps and websites that integrate with Facebook.
Last year, the social networking giant launched an industry-first bug bounty for third-party apps and websites to reward researchers who find vulnerabilities that involve improper exposure of Facebook user data.
“To be eligible, we ask that researchers comply with the third-party’s vulnerability disclosure or bug bounty programme before submitting their findings to Facebook,” the company said in a statement on Tuesday.
By committing to rewarding valid reports about bugs in third-party apps and websites that impact Facebook data, the company said it hopes to encourage the security community to engage with more app developers.
Facebook will issue rewards based on the impact of each valid report and other factors indicated within its terms, with a minimum reward of $500.
The bug bounty hunters will now be able to actively test third-party apps for security issues, as long as the third party authorises the researchers.
Related stories
Subscribe
- Never miss a story with notifications
- Gain full access to our premium content
- Browse free from up to 5 devices at once
Latest stories