Security vendor Kaspersky Lab has long been known for finding vulnerabilities in other companies’ products; now it is offering cash rewards to researchers who find vulnerabilities in its own products. The company has launched a bug bounty program through the HackerOne platform. It is offering a total of $50,000 to people who find vulnerabilities in its Kaspersky Internet Security and Kaspersky Endpoint Security products.
“The bug bounty program will supplement our overall internal strategy aimed at making our software products more secure,” Ryan Naraine, director of the Global Research & Analysis Team, U.S., Kaspersky Lab, said. He added, “The initial phase will last six months, and based on the results of this first phase, we will revise our offering in terms of budget, scope of products and types of vulnerabilities covered moving forward.”
