Ad Home

Samsung Awards: Hack Any Samsung Device Win Upto $200,000

Samsung Awards: Hack Any Samsung Device Win Upto $200,000 

The company has announced their bug bounty initiative called Mobile Security Rewards Program. And as the name suggests, the program would shower cash on bug hunters who reveal security loopholes in Samsung’s range of mobile devices, mostly running the Android operating system.

South Korean giant Samsung Electronics has published the official launch of the mobile bug bounty Program, which promises big awards of up to $200,000 for Critical security issues in Samsung mobile devices and services.

In return, the company will pay between USD 200 and USD 200,000 for valid reports. An important thing to keep in mind about this bug bounty program is that Samsung will only facilitate reports demonstrating remote attacks, not the physical ones. Also, vulnerabilities found in the third-party application are not eligible for submission.

The eligible devices according to the bug bounty manual include: “Galaxy S series (S8, S8+, S8 Active, S7, S7 edge, S7 Active, S6 edge+, S6, S6 edge, S6 Active), Galaxy Note series (Note 8, Note FE, Note 5, Note 4, Note Edge), Galaxy A series (A3 (2016), A3 (2017), A5 (2016), A5 (2017), A7 (2017)), Galaxy J series (J1 (2016), J1 Mini, J1 Mini Prime, J1 Ace, J2 (2016), J3 (2016), J3 (2017), J3 Pro, J3 Pop, J5 (2016), J5 (2017), J7 (2016), J7 (2017), J7 Max, J7 Neo, J7 Pop) and Galaxy Tab series (Tab S2 L Refresh, Tab S3 9.7)

According to Samsung:
“The rewards program kicked off with a pilot in January 2016 to ensure an efficient and productive public introduction to the broader security community.”

“Samsung’s Mobile Security Rewards program is the latest initiative to demonstrate the company’s steadfast commitment to enabling secure experiences for all its customers.”

“The program will cover all of Samsung’s mobile devices currently receiving monthly and quarterly security updates, a total of 38 devices*. In addition, the program will reward submissions for potential vulnerabilities in the latest Samsung Mobile Services, including Bixby, Samsung Account, Samsung Pay and Samsung Pass, among others. 

Dependent upon the severity of a given submission, as well as the researcher’s ability to provide proof of concept, Samsung will issue rewards of up to $200,000.”

Samsung promises that it will respond to reports within a maximum of 48 hours upon receiving the initial report.